So do you remember the 2014 movie The Interview? It caused so much controversy they had to take it off many theaters. In fact, NK dictator Kim Jung Un threaten havoc. But four years later, they’re still retaking havoc. This is the new North Korean malware: consumer alert.
According to the FBI and Homeland Security, North Korean hackers are using remote access tools to steal passwords and other important data. Furthermore, North Korea did this since 2009 and continue to do so in 2018. They’re biggest targets are media, pop culture, and financial sectors. Jonap, one of the tools, can carry hackers’ commands. Then, it infects a system already weak by other malware. Users get hit when they visit infected sites or open malicious emails and attachments.
And the new North Korean malware isn’t just hitting US sites. Jonap is affecting 87 other nations from around the world. Then there is Brambul. Brambul is a worm they put on by dropping malware. After this, it gets IP addresses. Then, they get illegal access to your system. If that isn’t enough, they’ll make up their own IP addresses. These fake addresses help them carry out more attacks. Now, they have IP addresses, usernames, passwords, emails, and all the other sensitive information they need.
For the IT support community to find, or even deter, North Korea’s hackers is going to be hard. First of all, they’re hard to find. Then, look at their twisted cause. Keep in mind only a small percentage of the North Korean people even have online access. Also keep in mind there are less than three million smartphones in North Korea. However, their population is around 30 million. So who in North Korea is doing these hacks? Who in North Korea gives the international IT service community such a headache? Could a select handful people under North Korean dictator Kim Jong Un’s orders be behind this?