The Strategist

Kaspersky Lab reports hacking attacks on COVID-19 researchers

12/29/2020 - 03:45

The hacker group Lazarus has launched two attacks on organizations involved in coronavirus research, Kaspersky Lab reported.

The targets of the hackers, whose activities were discovered by the company, were the Ministry of Health in one of the Asian countries and a pharmaceutical company.

According to Kaspersky Lab, the attack took place on September 25th. The hackers used the Bookcode virus, as well as phishing and website compromises. A month later, on October 27, the servers of the Ministry of Health, running on the Windows operating system, were attacked.

The attack on the ministry, according to the IT company, used the wAgent virus. Similarly, Lazarus previously infected the networks of cryptocurrency companies.

The Lazarus group is also known as APT38. The US Federal Bureau of Investigation (FBI) reported that their activities are sponsored by the DPRK authorities. Among the incidents involving Lazarus were the hacking of the servers of the Sony Pictures film company in 2014 and the attack using the WannaCry virus in 2017.

In July, the National Cybersecurity Center of Great Britain (NCSC) and similar departments of the United States and Canada accused the hacker group APT29, allegedly associated with the Russian special services, in an attempt to steal information about the coronavirus vaccine.