⚰️

Lazarus Group

Aliases

Labyrinth Chollima, HIDDEN COBRA, Guardians of Peace, ZINC, NICKEL ACADEMY, Diamond Sleet, APT38

Tags

State-Sponsored

Attribution

🇰🇵

Incidents

ByBit hack PolinRider Campaign: DPRK-Linked Supply Chain Attack Infects GitHub Repositories

References

https://attack.mitre.org/groups/G0032/

Last edited

Oct 14, 2024 1:50 PM

Status

Stub

Cloud-fluent

Unique Tools

Fudmodule rootkit

Targeted geography

United States/North America

Targeted industries

AerospaceEntertainment

The Lazarus Group, is a North Korean state-sponsored Advanced Persistent Threat (APT) group. It has been active since at least 2009 and is associated with the Reconnaissance General Bureau. Lazarus is known for a variety of cyber campaigns, including destructive attacks like the 2014 Sony Pictures hack and cryptocurrency thefts. The group employs advanced malware, exploits zero-day vulnerabilities, and targets industries such as aerospace and cryptocurrency.