Cloud Threat Landscape
  • Incidents
  • Actors
  • Techniques
  • Defenses
  • Tools
  • Targeted Technologies
  • Posters & Newspapers
  • About
  • RSS
  • STIX
  • Back to wiz.io
Cloud Threat Landscape
/Actors
Actors
/
⚰️
Lazarus Group
⚰️

Lazarus Group

Aliases

Labyrinth Chollima, HIDDEN COBRA, Guardians of Peace, ZINC, NICKEL ACADEMY, Diamond Sleet, APT38

Tags
State-Sponsored
Attribution
🇰🇵
Incidents
ByBit hack
References
https://attack.mitre.org/groups/G0032/
Last edited
Oct 14, 2024 1:50 PM
Status
Stub
Cloud-fluent
Unique Tools
Fudmodule rootkit
Targeted geography
United States/North America
Targeted industries
AerospaceEntertainment

The Lazarus Group, is a North Korean state-sponsored Advanced Persistent Threat (APT) group. It has been active since at least 2009 and is associated with the Reconnaissance General Bureau. Lazarus is known for a variety of cyber campaigns, including destructive attacks like the 2014 Sony Pictures hack and cryptocurrency thefts. The group employs advanced malware, exploits zero-day vulnerabilities, and targets industries such as aerospace and cryptocurrency.

Made with 💙 by Wiz

Last Updated: April 3, 2025