- May 4, 2019
- 801
U.S. Cyber Command’s largest-ever upload to VirusTotal exposes malware linked with North Korean government hackers, according to security researchers.
Several of the malware samples have been tied to hackers from the so-called Lazarus Group, which the U.S. government has linked with the North Korean government. Specifically, the samples look to be what’s known as “HOPLIGHT,” a trojan that has been used to gather information on victims’ operating systems and uses a public SSL certificate for secure communications with attackers.
Cyber Command uploaded 11 malware samples in all.
FireEye Managing Principal Threat Analyst Andrew Thompson said the upload signals to North Korea‘s government that it can’t remain anonymous in cyberspace.
Cyber Command's biggest VirusTotal upload looks to expose North Korean-linked malware
U.S. Cyber Command looks to have uploaded its biggest cache of malware to VirusTotal — 11 files linked to North Korea — on a North Korean holiday.
www.cyberscoop.com