North Korea continues to be a cybersecurity threat to U.S. based companies.
This is what we know so far:
How: Infecting victims with sophisticated homegrown ransomware
Who: Lazarus – hacking group(North Korean government)
What: New wave of cyberattacks – malware (VHD)
Where: First attack, unknown; second attack, business in France
When: Spring 2020
Why: For a devastating effect; extort money from hacked organizations
The motive behind the deployment of this new ransomware is not entirely clear, but from previous knowledge of the Lazarus group as well as their initiatives, we can conclude the following information.
- “Big game hunting” – compromise the networks of high-profile companies
- Stealing data to publish online
- Raise funds for the Pyongyang government
Read more details here.
It isn’t confirmed yet of other business or organizations being attack by VHD. There are always emerging ransomware variants. It is crucial to be knowledgeable about these threats and what they mean for your organization. Take this as a warning and opportunity to straighten up your security posture in order to secure your environment for not only yourself, but also your entire organization.
ShadowSpear® recognizes these new variants immediately. SpearTip’s 24/7 Security Operations engineers are always researching and investigating threats. It is smart to engage with a cybersecurity firm like us to evaluate your cyber-readiness score. Learn more about ShadowSpear® before YOU become VDH’s next victim.