미국이 '나사로 그룹'으로 알려진 북한 연계 해커 제재

ment 9/14 '19 posted (9/14 '19 edited) 뉴스 IT

• 제 3 세대 북한 지도자 밑에서 독재 국가는 가장 강력한 핵 실험을 실시하고 최초의 대륙간 탄도 미사일을 발사하고 미사일을 미국령 괌 인근 해역에 보낼 것이라고 위협했습니다.

• Bluenoroff는 SWIFT 메시징 시스템에 대한 공격을 포함하여 다양한 전술을 통해 2014 년부터 글로벌 금융 기관으로부터 10 억 달러 이상을 훔쳤습니다.

• 최근 ProPublica 조사에서는 몸값 요구를 지불하거나 몸값의 비용을 커버하는 보험 상품을 가지는 윤리에 의문이 제기되었습니다. 자금이 범죄 또는 이러한 경우에는 북한군의 손에 넘어갈 가능성이 있는 경우입니다.

• 그룹 중 하나는 2017 년 악명 높은 WannaCry 랜섬웨어 공격을 담당했으며 회사와 정부는 수억 달러를 지불했습니다.

• 재무부 당국자는 나사로 그룹은 RGB(정찰총국, Reconnaissance General Bureau)의 제 3 국의 아래에 있는 제 110 연구 센터의 부하라고 말했습니다.

• 제 3 차 기술 감독국으로도 알려진 이 사무국은 북한의 전체 사이버 운영을 감독할 책임이 있습니다.

• 재무부 관계자는 "블루노로프는 북한의 제재 증가에 대응하여 불법적으로 수익을 창출하기 위해 북한 정부에 의해 설립됐다"고 말했습니다.

Cyberattacks against US helped fund North Korea weapons program: Treasury [www.cnbc.com]

Attention Required! | Cloudflare [www.darkreading.com]

US Treasury sanctions three North Korean hacking groups [www.zdnet.com]

U.S. sanctions North Korea-tied hackers known as "Lazarus Group" [www.axios.com]

Treasury Sanctions North Korean State-Sponsored Malicious Cyber Groups [home.treasury.gov]

North Korean government hackers sanctioned by U.S. Treasury [www.cyberscoop.com]

newest replies popular replies

Open Wiki - Feel free to edit it. -

9/14 '19 answered

US Treasury sanctions three North Korean hacking groups

-US wants to seize financial assets associated with Lazarus Group, Bluenoroff, Andarial
-directly accuses the Pyongyang regime of carrying out hacks to raise money for its nuclear missile programshttps://t.co/oFjeGxPP9F pic.twitter.com/RXfuCDXJJl
— Catalin Cimpanu (@campuscodi) September 13, 2019

Kim Jong Un, the only leader to test nuclear weapons this century, spent most of Trump’s first year perfecting his arsenal.
Since 2011, he has fired 90+ missiles and four nukes, more than what his father and grandfather launched over a period of 27 years. https://t.co/L1mu4gcGf0
— Amanda Macias (@amanda_m_macias) September 13, 2019

Cyberattacks against US helped fund North Korea's weapons program, feds say https://t.co/0gEbYXuYU2
— CCJ (@NastyOldWomyn) September 13, 2019

Thanks tRUmp....North Korean state-sponsored hacking groups attacked critical infrastructure, drawing illicit funds that ultimately funded the country’s weapons and missile programs.https://t.co/ghLU16Usrq
— Thomass4217 (@ThomasS4217) September 13, 2019

Developing: U.S. Treasury says North Korea has been conducting cyberattacks to fund weapons programs, issues new sanctions. https://t.co/Uk1aXblJkB
— Kate Fazzini (@KateFazzini) September 13, 2019

US Treasury sanctions three North Korean hacking groups | ZDNet https://t.co/h7HVBvx6j5 #Cybersecurity #infosec #cybercrime #cyberattacks #hacker #hack #breach #phishing #dos #ransomware #malware #virus #apt #pii #nist #fcc #finra #hipaa #pci pic.twitter.com/2ZcTp7RlQ2
— Rich Tehrani (@rtehrani) September 13, 2019

US Treasury sanctions three North Korean hacking groups https://t.co/Lwi1uzArzq by @campuscodi
— ZDNet (@ZDNet) September 13, 2019

US Treasury sanctions three North Korean hacking groups https://t.co/lwHr06ruRE
— CYB3R P4ND4 (@Panda_Lv0) September 13, 2019

US Treasury sanctions three North Korean hacking groups https://t.co/1eM9VkUnnw
— Anonymous??️ ? (@YourAnonRiots) September 13, 2019

The Treasury Department has added the Lazarus Group — a prolific hacking organization believed by intelligence agencies and researchers to be sponsored and directed by the North Korean government — to its sanctions list https://t.co/jx5xJD5VZA
— Axios (@axios) September 13, 2019

New #DPRK designations from @USTreasury go after North Korean cyber actors: https://t.co/nGi667Qb5g
— Cameron Trainer (@cmrntrainer) September 13, 2019

North Korean Cyber Sanctions by @USTreasury. Groups that @CrowdStrike tracks as SILENT CHOLLIMA and STARDUST CHOLLIMA, attributed by USG to RGB intelligence agency. On the heels of @USCYBERCOM DPRK malware release this weekend https://t.co/5siXdh7dNV https://t.co/AoXO7nYvlu
— Dmitri Alperovitch (@DAlperovitch) September 13, 2019

There was a lot of weak sauce gripes coming from the INFOSEC industry about the malware drops in VirusTotal by @CNMF_VirusAlert on Sunday. However, as mature professionals have suggested, it was one act in the execution of a greater strategy. https://t.co/QNBegmlueI pic.twitter.com/IvkmEShzhK
— Andrew Thompson (@QW5kcmV3) September 13, 2019

Article links to⤵️ Sep 13, 2019:
1/ "WASHINGTON – Today, the US Dept of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions targeting 3 North Korean?? ?state-sponsored? malicious cyber groups..." (more)https://t.co/ryABT7rbJR
— Arapaho415 (@arapaho415) September 13, 2019

Treasury sanctions North Korea's Lazarus Group and two sub-groups for malicious cyber activities https://t.co/08TFa4aHVT
— Daniel Wertz (@djpwertz) September 13, 2019

Treasury Sanctions North Korean State-Sponsored Malicious Cyber Groups https://t.co/M4RmFb6pmO
— Adam Rawnsley (@arawnsley) September 13, 2019

The U.S. Treasury Dept is sanctioning 3 North Korean hacking groups it says are backed by KJU, including Lazarus Group and 2 of its subgroups Bluenoroff and Andariel. They support Pyongyang's illicit weapon/missile programs. Details on @CyberScoopNews https://t.co/S2GFa98PlL
— Shannon Vavra (@shanvav) September 13, 2019

A tidbit to pull out today w new NK sanctions: Cybercom talks about how enabling is a part of DOD “defending forward,” and @CyberScoopNews has reported on how Cybercom works with DHS before - today we see this part of defend forward with Treasury/OFAC too https://t.co/S2GFa98PlL
— Shannon Vavra (@shanvav) September 13, 2019

North Korean government hackers sanctioned by U.S. Treasury https://t.co/HaArGrGk6Z via @shanvav
— Sean Lyngaas (@snlyngaas) September 13, 2019

permanent link

Open Wiki - Feel free to edit it. -

9/14 '19 answered

I'm sorry about the hacks that took money from y'all, these hacking groups do whatever they want @Plaid_USA @plaid_trump If you could loan me money, maybe a small loan of a million dollars (or billion), to help me with space rockets that would be cool. https://t.co/NMiuQiy8HD
— Plaid Kim Jong-un (@Plaid_unKim) September 13, 2019

3곳은 북한 정찰총국 해킹조직(Lazarus)으로 그룹명만 세분화한 것이고, 블루노로프와 안다리엘은 라자루스 그룹으로 기억하셔도 무관합니다.

지난 8월까지도 라자루스는 한국의 비트코인 관계자를 지속 공격하고 있는것이 공식확인되었습니다.https://t.co/DD1XSGPvq2 https://t.co/BkBL3KANsu
— cyberwar15 (@cyberwar_15) September 14, 2019

permanent link

Featured

Important Notice: Discontinuation of Our Wiki Service

Dear Valued Users,

We hope this message finds you well. We are writing to inform you of an important upcoming change to our services. After careful consideration and analysis, we have made the difficult decision to discontinue our wiki site, effective one month from 2024/04/30.

This was not an easy decision to make, as we understand the importance of the resources and community that have been built around our wiki. However, due to evolving market conditions and strategic realignments, we must redirect our resources and efforts towards other ventures that will allow us to serve you better in the future.

What This Means for You:

Access to Content: You will continue to have full access to all content on the wiki until the discontinuation date. We encourage you to save or migrate any content you wish to retain.
Final Date of Service: The wiki will become inaccessible starting 1st June 2024, after which all content will be permanently removed.

We are immensely grateful for the support and contributions of our user community throughout the years. The wiki is being retired, but our team will be back soon with new services and apps.

Thank you for being a part of our journey.

Warm regards,

editoy Inc.

Related

Featured