Typeframe Malware Indicative of North Korean Cyber Operations
US-CERT (United States Computer Emergency Response Team) of the Department of Homeland Security (DHS) in USA has cautioned of one more malware campaign, which according to it is attributable to North Korea. The malware dubbed Typeframe came to the notice of DHS first while the strain suggests malicious cyber operation by North Korea, in spite of North Korea and USA apparently becoming friends again as a sudden summit has been announced between the presidents of the two countries.
US-CERT released an advisory stating the Typeframe malicious program can be described as having characteristics of 'HIDDEN COBRA,' which is referred to certain hacking team of North Korea that during June 2017 attempted attack on aerospace, media, critical infrastructure and financial entities.
Out of eleven malware samples, Typeframe reportedly consisted of instances of 64-bit and 32-bit .exe files suitable for Windows along with one tainted Word file which consisted of Visual Basic associated with Apps macros. Theinquirer.net posted this on the Web dated June 18, 2018.
The implication of the above is that Typeframe can download more malware and install them, alter firewalls suitably, establish connection with other servers and receive commands from hackers, while also manipulate to allow proxies and Trojans. Hidden Cobra was active, of late. U.S-CERT projected the group as one more technical alert with respect to the group's tools namely Brambul and Joanap malicious programs.
The agency also delineated the ways for maintaining cyber-security viz. before downloading any software online it should be scanned; PC owners should deploy personal firewalls; they must maintain operating systems equipped with necessary patches, and so on.
North Korea the nation replete with struggle for existence and poverty and under the rule of Kim Jong-un has been considered launching frequent than usual cyber attacks, although there has hardly been an instance when it admitted doing so.
Blame for attacks using WannaCry ransomware has been squarely on North Korea which culled targets worldwide, notably prominent NHS hospitals. Countries such as United Kingdom and United States emphatically described the government of North Korea as well as its state-backed hacker collectives responsible widely for the mayhems.
» SPAMfighter News - 6/26/2018
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!