Aliases
Labyrinth Chollima, HIDDEN COBRA, Guardians of Peace, ZINC, NICKEL ACADEMY, Diamond Sleet, APT38
Tags
State-Sponsored
Attribution
🇰🇵
Incidents
ByBit hack
References
https://attack.mitre.org/groups/G0032/
Last edited
Oct 14, 2024 1:50 PM
Status
Stub
Cloud-fluent
Unique Tools
Fudmodule rootkit
Targeted geography
United States/North America
Targeted industries
AerospaceEntertainment
The Lazarus Group, is a North Korean state-sponsored Advanced Persistent Threat (APT) group. It has been active since at least 2009 and is associated with the Reconnaissance General Bureau. Lazarus is known for a variety of cyber campaigns, including destructive attacks like the 2014 Sony Pictures hack and cryptocurrency thefts. The group employs advanced malware, exploits zero-day vulnerabilities, and targets industries such as aerospace and cryptocurrency.