Threat advisory

Threat Advisory: Undetected North Korean Malware: A Looming Threat to Financial Institutions

Published 16 February 2023

Bridewell Intelligence has identified a looming threat to financial institutions related to a cluster of malicious North Korean malware, which is currently unreported and undetected by anti-virus solutions.

Bridewell Intelligence has identified a looming threat to financial institutions related to a cluster of malicious North Korean malware, which is currently unreported and undetected by anti-virus solutions.

This information was discovered by pivoting from recent Proofpoint and Kaspersky reporting that revealed activities of TA444, a North Korea state-sponsored threat actor that is financially motivated and actively targeting cryptocurrencies and financial institutes.

Please read our threat advisory for indicators of compromise and recommended mitigation measures for financial institutions and cryptocurrency exchanges to protect themselves against this threat.

View PDF

 

Author Bio:

Yashraj Solanki, Junior CTI AnalystJoshua Penny, CTI Analyst
Yashraj Solanki is a Junior CTI Analyst at Bridewell and a SME on Mitre ATT&CK. He has a prior background in control systems engineering with a masters in Cyber Security. Joshua Penny is a CISSP certified Cyber Threat Intelligence Analyst with 5 years’ experience working within CTI at Bridewell and previously within the education and research Sector.