North Korea Uses its Own Mobile Malware to Track Defectors

More than a thousand citizens of North Korea make efforts for fleeing to South Korea every year and this feeling of freedom suddenly is expectedly overwhelming. But, North Korea government is not happy about anybody leaving the country, so it uses its means for finding and tracing all those who have fled.

Now, even though North Korea mayn't depute investigators to track down each citizen who defects, it knows other creative methods for maintaining track of its ex-citizens, notably among them developing sophisticated malware that's the government's own. Specifically, such malware penetrating the mobile device intercepts the user's personal information while also takes his photos and uploads the same onto some distant cloud server.

Security Software Company McAfee observes that the latest malware assaults bear resemblances with the one the company found during January. Apparently, "Sun Team" a hacking gang from NK is behind both the attacks. McAfee discovered certain information logs from Yandex and Dropbox which associate with the latest attack and which are from those very experimental devices that Sun Team utilized during the previous attack. Moreover, the e-mail ids which the latest contaminated applications' developer utilized are those very ones related to the investigation squad of NK.

Other than that NK government has been responsible for the RedDawn the Sun Team had a clear distinction from Lazarus group of hackers which received state backing and had been carrying out assaults since some years now, so informed McAfee to Ars Technica. News4c.com posted this, May 20, 2018.

For getting 30,000+ North Korean defectors of 2016 take down the apps, the Sun Team attempted so through one bogus Facebook profile alternatively via dispatching private missives directly to them through the website. The popular KakaoTalk chat application in SK was as well employed for sending web-links to the victims.

When most used, the apps that currently are eliminated, recorded some hundred take downs onto Google's Play Store. It isn't only with North Korean defectors that they should be careful about what apps they download. But, with any targeted malware assault, end-users require being extremely cautions no matter if the apps are even from the Play.

» SPAMfighter News - 5/29/2018