North Korean hackers exploited Seoul Halloween tragedy to distribute malware, Google says


FILE PHOTO: Women mourn at the scene of a crowd crush that happened during Halloween festivities, in Seoul, South Korea, November 29, 2022. REUTERS/ Heo Ran/File Photo

SEOUL (Reuters) - North Korean government-backed hackers referenced the deadly Halloween crush in Seoul to distribute malware to users in South Korea, Google's Threat Analysis group said in a report.The malware was embedded in Microsoft Office documents which purported to be a government report on the tragedy that killed more than 150 people after tens of thousands of young revellers crowded into narrow alleyways.

"This incident was widely reported on, and the lure takes advantage of widespread public interest in the accident," the Threat Analysis Group said.

Google attributed the activity to a North Korean hacking group known as APT37 which it said targets South Korean users, North Korean defectors, policy makers, journalists and human rights activists.

Google also said it has not determined what the malware, which exploited an Internet Explorer vulnerability, was intended to achieve. It reported the problem to Microsoft on Oct. 31 after multiple reports from South Korean users on the same day. Microsoft issued a patch on Nov. 8.

A United Nations panel of experts that monitors sanctions on North Korea has accused Pyongyang of using stolen funds gained through hacking to support its nuclear and ballistic missile programmes to circumvent sanctions.

North Korea does not respond to media inquiries, but has previously released statements denying allegations of hacking.

On Thursday, South Korean officials warned businesses against inadvertently hiring IT staff from North Korea.

In May, the United States issued a similar advisory, saying rogue North Korean freelancers were taking advantage of remote work opportunities to hide their true identities and earn money for Pyongyang.

(Reporting by Soo-hyang Choi; Editing by Edwina Gibbs)

Article type: free
User access status:
Subscribe now to our Premium Plan for an ad-free and unlimited reading experience!

   

Next In Tech News

Opinion: Teens carry a threat to mental health in their pockets
Like Terminator’s T-1000, this robot liquefies before returning to its original form
This app offers travellers on the London Underground less-polluted routes
Find out if your personal data has fallen into the wrong hands online
FTX founder Bankman-Fried objects to tighter bail, says prosecutors 'sandbagged' him
As they enter a 4th generation, are foldable phones finally mature?
This free tool lets you extract text from images
Google Stadia is dead, but its controllers live on
Twitter says users will be able to appeal account suspension
New smart-home standard for Android and Google devices has arrived

Others Also Read