DooKey
[H]F Junkie
- Joined
- Apr 25, 2001
- Messages
- 13,554
US-CERT has released a joint technical alert on malware attacks linked to North Korean IP addresses. They say a remote administration tool called FALLCHILL is being deployed by a group called Hidden Cobra. The North Koreans are using this to attack aerospace, telecommunications, and finance industries. Just goes to show that cybersecurity experts have to be ever vigilant.
FBI has high confidence that HIDDEN COBRA actors are using the IP addresses - listed in this report’s IOC files - to maintain a presence on victims’ networks and to further network exploitation. DHS and FBI are distributing these IP addresses to enable network defense and reduce exposure to any North Korean government malicious cyber activity.
FBI has high confidence that HIDDEN COBRA actors are using the IP addresses - listed in this report’s IOC files - to maintain a presence on victims’ networks and to further network exploitation. DHS and FBI are distributing these IP addresses to enable network defense and reduce exposure to any North Korean government malicious cyber activity.