Cash-Starved North Korea Eyed in Brazen Bank Hack
Tweet text:
Shannon Vavra
@shanvav
EXCLU: Suspected North Korean govt hackers, starved for cash w/ sanctions, appear to have gone trying to hack this bank last year w/ custom-made malware to fund regime goals & update NKs nuclear weapons. The mystery grows from there...on @thedailybeast
Cash-Starved North Korea Eyed in Brazen Bank Hack
Hackers who stole tens of millions of dollars to fund North Koreas nuclear weapons program in 2016 tried hitting another bank last year, The Daily Beast has learned.
thedailybeast.com
5:10 AM · Oct 26, 2021
https://www.thedailybeast.com/cash-starved-north-korea-eyed-in-brazen-bank-rakyat-indonesia-hack?ref=home
Think Oceans 11only the robbers are cash-starved, nuke-thirsty North Koreans and their weapons are keyboards, not explosives and guns.
In the latest efforts to fund Kim Jong-Uns nuclear ambitions, hackers suspected of working for the North Korean government appear to have slithered their way into the computer networks of an Indonesian bank in an apparent attempt to pull off a megaheist to fund regime goals, The Daily Beast has learned.
It was around February of 2020 when the hackers, suspected of working for North Koreas military intelligence agencythe Reconnaissance General Bureau (RGB)are believed to have targeted the networks of Bank Rakyat Indonesia, cybersecurity researchers that have studied the malware culprit told The Daily Beast.
The hackers appear to have gone after the banks networks with custom-made North Korean malware, according to a technical report on the apparent breach obtained by The Daily Beast. It remains unclear whether the North Korean hackers were successful in stealing any moneythe report doesnt confirm with 100 percent certainty that the hackers were successful in hitting the bank and making off with the cashbut the report indicates the hackers were likely successful in running the final parts of their hacking campaign against the bank, said Adrian Nish, the head of threat intelligence at BAE Systems.
Nish added that the particular malware believed to have hit Bank Rakyat Indonesia was a late-stage tool, typically used after hackers have already gained access to the network and done reconnaissance on its systems.
*snip*