Lazarus Group Might be Targeting You

Lazarus Group is a cyber-crime organization and there is little knowledge of the individuals behind it

You probably never heard of the Lazarus Group, but you sure know about hacking and the term phishing.

You know don’t about phishing?

Oh okay

Let’s touch on it then…

Hacking: Lazarus Group Plan Large-scale Phishing Campaign in 6 Countries

What is Phishing?

Sometime last year, the head of Invictus Group, Obinwanne Okeke was arrested in the US by the FBI alongside Seventy-seven others in what was termed “the largest case of online fraud in U.S. history.

His crime as stated by the FBI was defrauding a subsidiary of Caterpillar, Unatrac Holding Limited of $11 million.

What you probably don’t know is, the whole process of the fraud started with phishing….. yes, the phishing many don’t know anything about.

According to phishing.org, phishing is a cyber-crime wherein individuals and/or companies are contacted by emails, phone or instant message by somebody acting like a genuine organization to bait people into giving delicate information, for example, personally identifiable information, banking, and credit card details, and passwords.

The data is then used to get to significant records and can bring about wholesale fraud and money related misfortune.

Read: Effects of Mobile Phone on Human Health

What about the Lazarus Group?

Lazarus Group is a cyber-crime organization and there is little knowledge of the individuals behind it.

However, it is suggested that the group is sponsored by North Korea.

Researchers have linked the group to over half a dozen cyberattacks in the last decade. One of them is the Sony Pictures hack.

Lazarus Group Planning Large-scale Phishing Campaign in 6 Countries

According to Cyfirma, A cybersecurity firm, the groups are planning a large-scale phishing campaign targeted at more than 5M individuals and businesses (small, medium, and large enterprises) across six countries in three continents.

Their motivation is purely financial and they will be targeting people with phishing emails under the guise of local authorities in charge of dispensing government-funded Covid-19 support initiatives.

These phishing emails are designed to drive recipients to fake websites where they will be deceived into divulging personal and financial information.

The countries they intend to target according to the Cyfirma’s findings are Singapore, Japan, South Korea, India, the United States, and the United Kingdom.

There is a common link across the six targeted nations – the governments of these countries have announced significant financial support to individuals and businesses in their effort to stabilize their pandemic-ravaged economies.

The government of Singapore announced SGD 100B in financial aid to stem unemployment and help businesses thrive again.

The US government has allocated trillions of dollars to ease the effects of the coronavirus pandemic.

Japan, India, and the UK have also set aside economic stimulus packages to help individuals and companies.

Below is an excerpt from the Cyfirma findings:

CYFIRMA Researchers first picked up the lead on June 1, 2020, and have been analyzing the planned campaign, decoding the threats, and gathering evidence. Evidence points to hackers planning to launch attacks in six countries across multiple continents over two days. Further research uncovered seven different email templates impersonating government departments and business associations.

As of the time of reporting (18 Jun), we have not seen the phishing or impersonated sites defined in the email templates. But our research shows the hackers were planning to set that up in the next 24 hours.

We also observed that hackers are planning to spoof or create fake email IDs impersonating various authorities. These are some of the emails discussed in their phishing campaign plan:

> [email protected]

> [email protected]

> [email protected]

> [email protected]

> [email protected]

> [email protected]

Campaign Launch Dates:

According to the hacker’s plans, as observed by CYFIRMA Research, the phishing campaigns are scheduled to launch in the following countries across multiple continents on the stated dates.

Country: USA

Date: 20 June 2020

Target: Individuals


Country:United Kingdom

Date: 20 June 2020

Target: Businesses


Country: Japan

20 June 2020

Target: Individuals


Country: India

Date: 21 June 2020

Target: Individuals


Country: Singapore

Date: 21 June 2020

Target: Businesses


Country: South Korea

Date: 21 June 2020

Target: Individuals

Below are images of their phishing templates:

 

Lazarus group Phishing campaign
Image Credit: cyfirma.com
Image Credit: cyfirma.com

You Will Also Like: Neil Harbisson: The Artist Who Hears Colours and Sees Sounds

Source: CYFIRMA

Click the {next} button to continue reading...

Lazarus Group Might be Targeting You

Leave a Reply

Negative Impact Cell Phones have on Your health

Effects of Mobile Phone on Human Health

Brighton vs Arsenal: A Short Horror Film