<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=1354242&amp;fmt=gif">

North Korea Using Ransomware Groups to Target Small Businesses, Healthcare

In separate reports, CISA and the Microsoft Threat Intelligence Center linked the Maui and H0lyGh0st ransomware gangs to North Korean nation-state actors. 

Latest Threat Intel News:


Ransomware Gangs Linked to North Korean Nation-State Actors

The two groups are targeting small businesses and the healthcare sector, respectively. In combination with the large cryptocurrency heists carried out by North Korean hackers such as Lazarus group, experts believe that these financially motivated cybercrimes are being propagated to support the country’s struggling economy.

Why This Matters

North Korea’s foray into digital extortion has no signs of slowing. The situation brings added complications for victims given the country’s comprehensive sanctions by the U.S Treasury Department. Since sanctions concerns may prohibit purchasing a decryptor from the cybercriminals, victims without viable backups may be severely impacted.

Additional Information:

This blog post and its contents are intended for general guidance and informational purposes only. This blog post is under no circumstances intended to be used or considered as specific insurance or information security advice.

Recent Articles

T-Mobile and Nissan Breached, New Git Vulnerabilities, & SSO Smishing

T-Mobile and Nissan disclose breaches, critical security flaws discovered by GitLab, and Single...

AI Helps Cybercriminals, Control Web Panel Vulnerability, Exploits of Unpatched Microsoft Exchange

AI helps cybercriminals, critical vulnerability in control web panel, and unpatched Microsoft...

Breach at Slack, Breach at CircleCI, & Unpatched Vulnerability Behind Rackspace Ransomware Outage

Breach at Slack, breach at CircleCI, and unpatched Microsoft Exchange causes ransomware incident.