[ad_1]
Washington:
North Korean hackers are most likely working with Russian-speaking cybercriminals on ransomware and different malicious software program, researchers stated Wednesday.
Security agency Intel 471 stated in a report it discovered hyperlinks between North Korean hacker group Lazarus, identified for assaults on banks worldwide, and a Russian-operated malware operation known as TrickBot.
TrickBot is described within the report as a “malware-as-a-service offering, run by Russian-speaking cybercriminals, that is not openly advertised on any open or invite-only cybercriminal forum or marketplace.”
It works with “top-tier cybercriminals with a proven reputation,” the report stated.
The Intel 471 report stated different safety researchers have pointed to doable hyperlinks between the teams, however that its investigation discovered extra proof, together with indicators that malware developed in North Korea was supplied on the market on Russian marketplaces.
“Our conclusion is that we deem it likely that threat actors running or having access to TrickBot infections are in contact with DPRK (North Korean) threat actors,” the report stated.
“DPRK threat actors likely are active in the cybercriminal underground and maintain trusted relationships with top-tier Russian-speaking cybercriminals.”
It added that “malware believed to be only used and probably written by DPRK threat actors was very likely delivered via network accesses held by Russian-speaking cybercriminals.”
(This story has not been edited by NDTV employees and is auto-generated from a syndicated feed.)
[ad_2]
Source hyperlink