North Korean Lazarus Group: Money heist

Already the world is suffering from COVID 19, and also there are many more issues. The economy of country has fallen, the situation became worst. Now, Hackers tied to the North Korean government are attacking ATMs globally to fund the cash-strapped country to keep up with its nuclear weapons programme, four US federal agencies have warned.

According to the researchers at global cyber security firm F-Secure, a system administrator from the target organization received a phishing document via their personal LinkedIn account.

The agencies issued the joint technical alert about the ongoing ATM cash-out scheme by North Korean government cyber actors – referred to as “FASTCash 2.0: North Korea’s BeagleBoyz Robbing Banks”.

The alert provided important, new details about the resumption of a North Korean cyber-enabled bank robbery scheme targeting banks in multiple countries to initiate fraudulent international money transfers and ATM cash outs.

“The document masqueraded as a legitimate job advert for a role in a blockchain technology company that matched the employee’s skills,” F-Secure said in a statement.Though the document on the target’s host had been altered to remove malicious content after execution, F-Secure assessed that the original document was the same, or similar to, a sample publicly available on internet security website VirusTotal.

Since February, North Korea has resumed targeting banks in multiple countries to initiate fraudulent international money transfers and ATM cashouts,” according to the joint alert issued by the Cybersecurity and Infrastructure Security Agency (CISA), Treasury Department, Federal Bureau of Investigation (FBI) and the US Cyber Command.

Earlier this year, the hacker group stole cryptocurrency from Mac and Windows users. Lazarus was also involved in stealing nearly $600 million worth of crypto between 2017 and 2018.

In June, a ZDNet report said India was among six nations that may see a large cyber attack in the form of Covid-19 themed phishing campaign from North Korean state hackers.

“The attack is part of the Lazarus Group’s large-scale campaign targeting more than 50 lakh individuals and businesses, including small and large enterprises, across six countries: India, Singapore, South Korea, Japan, the UK and the US, according to the report.

So people in India are requested to be aware. Don’t believe in any scheme which is directly related to bank details. Don’t share any kind of details to unknown. A mistake can ruin your life. Be aware, be safe, stay home.