Dozens Of Cyber Attacks Against Global Banks Linked To Lazarus Hacker Group

Banks in 31 countries have been attacked by an aggressive malware campaign from the infamous Lazarus cyber criminal gang, according to threat data from Symantec.

The spate of attacks came to light when a Polish bank discovered unknown malware running on a clutch of its computers bearing indicators of compromise seen with malware used to attack other financial institutions, telecoms and Internet firms across the globe.

The code string in the malware are similar to those used by the Lazarus hacker group, notorious for a host of attacks since 2009 against targets in the US and South Korea, including the high-profile cyber attack on Sony Pictures and the theft of $81 million (£64.7m) from the Bangladesh Bank’s US Federal Reserve.

“Analysis of the malware is still underway. Some code strings seen in the malware used shares commonalities with code from malware used by the threat group known as Lazarus,” said Symantec’s security response team.

Lazarus rising

Symantec said the source of the Polish bank attack appears to have been the website of the Polish financial regulator, which was compromised in order to redirect visitors to a site containing a custom exploit kit that attempted to install malware on targeted computers with IP addressees from a list of 150 that belong to 104 different organisations in 31 countries.

The cyber security firm reported it has since blocked attempts to infect systems in Poland, Mexico and Uruguay since last October.

The targeted nature of the exploit kit indicates that it is no mere chaos causing malware but one that looks to steal money from lucrative targets once they are infected with malware.

“Further investigation of these attacks is underway and, over time, more evidence may emerge about the identity and motives of the attackers. After a series of high profile attacks on banks during 2016, this latest incident provides a timely reminder of the growing range of threats facing financial institutions,” said Symantec.

With the rise of such attacks against banks, it is no surprise firms like BT are offering ethical hacking services to help such financial institutions find holes in their infrastructure and move to shore up their cyber security.

How much do you know about hackers? Take our quiz!

Roland Moore-Colyer

As News Editor of Silicon UK, Roland keeps a keen eye on the daily tech news coverage for the site, while also focusing on stories around cyber security, public sector IT, innovation, AI, and gadgets.

Recent Posts

Largest US Water Utility Suffers Cyberattack

Hack of critical infrastructure in the US, as American Water admits “unauthorised activity” on computer…

9 hours ago

Battery Maker Northvolt To Replace Plant Boss, Amid Difficulties

Difficulties continue for Northvolt, as head of Europe's first lithium-ion gigafactory steps down with immediate…

9 hours ago

TikTok Sued By US States For Allegedly Harming Children

Legal headache deepens for TikTok in US, after a number of states file lawsuits alleging…

11 hours ago

Canadian Crypto Expert Denies He Is Satoshi Nakamoto

After HBO documentary names Canadian crypto expert Peter Todd as Bitcoin inventor – but he…

11 hours ago

Google Confronts Break-Up Threat From US DoJ

US Department of Justice mulls asking judge to force Google to sell parts of its…

16 hours ago