The proliferate North Korean state-sponsored hacker group Lazarus, believed to be behind numerous high-profile cyberattacks against global financial and government institutions, appears to have focused again on international banks. Lazarus is now suspected to have been behind the recent Taiwan bank cyberheist, which saw hackers steal millions from the Far East International Bank.
The cyberattack on the bank involved hackers stealing money by compromising the bank's SWIFT network. The stolen funds were then transferred to several overseas beneficiaries in Sri Lanka and Cambodia – countries where Lazarus' bank heist activities have previously been detected.
According to security experts at BAE Systems, the recent bank hack is reminiscent of the $81m (£61m) Bangladesh Bank cyberheist, with similar malware and hacking tools used to carry out the attack. The malware used in the Taiwan bank hack was the same previously used by Lazarus against banks in Poland and Mexico. In the Taiwan bank heist, the hackers also used a variant of the Hermes ransomware, presumably "as a distraction or cover-up". #malware #backdoor #trojan #hacking #hack #windows #microsoft #security #blackhat #chinahacking #cybersecurity #northkorea #Lazarus #ransomware