VHD Ransomware Connected to North Korea’s Lazarus Group

VHD Ransomware Connected to North Korea’s Lazarus Group

Researchers have discovered that cryptocurrency thief Lazarus Group is expanding its scope to include ransomware as a means of extorting money from financial institutions and other targets in the Asia-Pacific (APAC) region. 

Financial transactions and source code similarities to prior malware link the North Korean threat actors, also known as Unit 180 or APT35, to a newly discovered ransomware strain named VHD. For the past few years, researchers at cybersecurity firm Trellix have been following attacks on financial institutions from what they believe is North Korea’s cyber army—attacks that often originate from the Lazarus Group. 

The gang is renowned for its skill at taking advantage of the cryptocurrency market through money-laundering operations to collect funds for the North Korean government.

Read More: https://threatpost.com/vhd-ransomware-lazarus-group/179507/

For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.