US Government Finds New Malware From North Korea

Days after the historic North Korea-United States summit, the Department of Homeland Security issued a report on Thursday warning of a new variant of North Korean malware to look out for. Called Typeframe, the malware is able to download and install additional malware, proxies and trojans; modify firewalls; and connect to servers for additional instructions. Engadget reports: Since last May, the DHS has issued a slew of alerts and reports about North Korea's malicious cyber activity. The department also pointed out that North Korea has been hacking countries around the world since 2009. And of course, don't forget that the U.S. also labeled that country as the source of Wannacry cyberattack, which notably held data from the UK's National Health Service hostage, and wreaked havoc across Russia and Ukraine. CNN was first to report the news.

Re:

[AutodidactLabrat]

No one needs to tear down his failures
We DO have to expose them though, since the MSM refuses to do its job

Re:

[xxxLCxxx]

To me, it looks like they are playing along willingly.

Re:

[cyberchondriac]

Right...
The MSM (news and television, movies, etc.) and European media absolutely drooled and fawned over BHO (and his wife) for 8 whole years. The only criticism he ever got was from Fox News (where all he got was criticism, actually) but which was a drop in the ocean compared to the MSM.
Obama even got a Nobel prize just for getting elected. You could never criticize anything he said or did, else his army of sycophants deemed you "racist" and then ostracized you, and even today this cult of Obama claim

Re:

[PopeRatzo]

Ask yourselves why North Korea and Russia are constantly made out to be this big threat

OK, first of all, it's not "North Korea" and "Russia" that are the threat, it's the regimes governing North Korea and Russia. I don't know any North Koreans, but all the Russian people I know are fine people. I have no problem with them.

1) Why the Kim regime is a threat: Kims regularly have their political enemies murdered (including family members) including one who was strapped to an anti-aircraft gun and vaporized.

h [bbc.com]

Re:

[AutodidactLabrat]

He also used state intelligence machinery to attack elections in the United States

Proof delivered, via 4 guilty verdicts and one plea.

So just like obama?

Proof? None

Re:

[oh_my_080980980]

Recent FBI report and admission that Trump's campaign was being monitored. https://www.nationalreview.com... [nationalreview.com]

Re:

[AutodidactLabrat]

Like I said, proof none.
If you think that the FBI was required to NOT watch contacts between Trumpistas and the Russians, you truly believe in a man above the law!

Re:

[drinkypoo]

The only reason the Kim regime is a credible military threat is nukes. NK hasn't been projecting military power into other nations. What dictators do to their own people has little effect on our people. Russia, on the other hand...

The Source

[phantomfive]

I want to point out that WannaCry was built on an exploit from the NSA (The ShadowBrokers leak). If the NSA had spent half as much time defending the internet as they do attacking it, then WannaCry never would have happened. Furthermore if admins had been up on their patches, they wouldn't have been hit by the attack. Finally, if admins had been doing proper backups, they wouldn't have needed to pay to get it unlocked.

So there are multiple layers of fuckup in WannaCry.

Re:The Source

[iggymanz]

hilarious how the populace turns a blind eye to the government that sponsors the most terrorism, the most malware, the most regional destabilizing, the one that gives support to the world's cruelest dictators.....yes, that's the USA.

Re:

[Anonymous Coward]

The US exploits donâ(TM)t hold health data for ransom, they exploit Siemens password of 1234 in countries where not being a head choppin Muslim is a crime punishable by head choppin. Where women have zero rights and where slavery is mandated by law.

Uh, the U.S. is best friends with Saudi Arabia, the country where women may not move in public without male warden. Never mind that Osama bin Laden, the guy organizing 09/11, was from there.

Re:

[iggymanz]

the U.S. doesn't hold health (and climate and carcinogen) data for ransom?

oh?

Re:

[kilfarsnar]

hilarious how the populace turns a blind eye to the government that sponsors the most terrorism, the most malware, the most regional destabilizing, the one that gives support to the world's cruelest dictators.....yes, that's the USA.

Ssshh! America's rosy self-image must not be disturbed.

Re:

[olsmeister]

I don't know what CNN you watch, but the one that I watch has only talked about Anthony Bourdain lately. I think Trump probably had him killed because he knew that would get the spotlight away from him for a while.

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[fermion]

I think the issue here is that the process was so non-traditional. No work was done before hand by the professionals diplomats that is common in most other negotiations.

No real agreement was made, other than the US conceding the right to conduct military exercises as it wishes. On the other hand, evidently, NK is still free to do whatever it wishes, including cyber attacks on the US, which is increasingly considered an act of war.

This is not the 'Obama apology tour' in which there are multiple legiti

Re:

[drinkypoo]

No real agreement was made, other than the US conceding the right to conduct military exercises as it wishes. On the other hand, evidently, NK is still free to do whatever it wishes, including cyber attacks on the US, which is increasingly considered an act of war.

Neither side made a firm commitment, and termination of operations with SK is contingent upon NK stopping nuclear testing. If they continue testing, Trump will ratchet up his blathering from 10 to 11 and explain that due to NK failing to keep its commitment to him (personally) that we have never been closer to recommencement of hostilities.

Not a Trump fan, but this is the one thing Trump might actually be able to do. Or, you know, he might just plunge us into WWIII, but I don't think so. I think not-so-lil'

So?

[mark-t]

Saying that the malware is from NK does not mean that NK's government had anything to do with it.

I'm sure that there have been more than a few instances of malware that started their life in the USA as well.

Re:

[Anonymous Coward]

Maybe. However most NK citizens don't have access to the internet, just the state intranet. Internet access requires special authorization.

Sure someone could get authorization, or find a hole in the security and release the malware, but since access requires government authorization the most obvious explanation is that it came from the government (or government supported).

North Korea isn't the US, or Russia

[raymorris]

North Korea isn't the United States. Internet access isn't even available to private citizens. It used only for government purposes.

Foreign guests such as diplomats are of course often granted access to use the North Korean internet to communicate with their home countries. Which falls under the "government purposes" category, because it's not done for the convenience of the foreigners.

North Korea is also a place where merely disagreeing with Dear Leader will get you publicly executed. Nobody in NK is secre

Re:CNN first to report fake news

[duke_cheetah2003]

Imagine THAT! CNN trying to provoke a war to defeat peace so they can get a dig in at the president.

Just so we're crystal clear, CNN reported on a DHS alert. So yeah. There's that.

Re:

[bill_mcgonigle]

War would be good for ratings but I'm not sure that the CNN people want war so much as they'd be willing to accept a war to get rid of Trump. The 7th Floor always wants a new war and would be glad to be rid of Trump, so you're good there.

Re:

[duke_cheetah2003]

They're both trying to undermine the President's efforts at peace. They both hate the President and are inventing any excuse they can to discredit him. This isn't hard to understand.

Last time I checked, the majority of Americans hate Trump. Passionately. Kinda reflects in the government. Our government is of the people, by the people, and surprise surprise, THE PEOPLE fucking hate Trump.

You don't get to be probably the most hated man in America by not stepping on some toes and pissing off people along the way. It's no surprise that the MAJORITY of this country is hell bent on persecuting this POTUS. I can think of no one more deserving. He wanted the spot light on him. He's gett

Re:

[thegarbz]

CNN trying to provoke a war to defeat peace so they can get a dig in at the president.

Occam's razor: No need to provoke a war to get a dig at the president, he offers himself up to that voluntarily daily.

What OS is targetted?

[hcs_$reboot]

Linux? iOS? Android? Solaris? BSD? give us a clue...

Re:

[Anonymous Coward]

N.K. is targeting "Basic" in a massive TRS-80 botnet.

Re:

[phantomfive]

"This malware report contains analysis of 11 malware samples consisting of 32-bit and 64-bit Windows executable files and a malicious Microsoft Word document that contains Visual Basic for Applications (VBA) macros."

Note that all the samples are trojans, you have to run them to get infected. These aren't remote exploits. Also, fwiw there is no reason presented to believe they are from North Korea.

The lengths the deep state will go

[najajomo]

deserves a repost [slashdot.org]

“The lengths the deep state will go to try and distract and disrupt the historic achievements of this president are truly amazing. I don't think I've ever seen a president so disrespected. The constant need to tear down everything he does is just, well, amazing.”

I'm not a fan of Trump, but I do believe you're right that 'reports' such as the above and other such activities, are part of a strategy by the deep state to depose a sitting President, a palace coup in all but na

Re:

[duke_cheetah2003]

I don't think I've ever seen a president so disrespected.

Well, I have definitely never seen the office of the President of the United States so disrespected. So I think jabbing at Trump is completely justified.

He is making mockery of all of us, and our nation. He's making us all look like him. He's disrespectful to other world leaders (except dictators! weird?) He is disgracing the office of the President and our entire nation.

So in turn, everyone who can, makes a mockery of Trump, in the media, in print, on the web, YouTube, SNL, late night comedy, stand u

They don't have internet, just nukes?

[raymorris]

> I find it HARD TO BELIEVE that they have the tools necessary to even get hack tools like debuggers, etc

So your theory is that a company which can build nukes can't download these debuggers from Microsoft?

https://docs.microsoft.com/en-... [microsoft.com]

Are they also unable to download https://x64dbg.com/ [x64dbg.com]

And all of these?

https://www.concise-courses.co... [concise-courses.com]

> As someone who works in the cyber industry;

Vernon? There's a reason we fired you.

s/company/country/

[raymorris]

That should of course say "country", not "company".

Re:

[najajomo]

Anonymous Coward [slashdot.org] "One of the first steps to achieving tyranny is to attack and discredit the free press"

'the CIA task force “now has relationships with reporters [collective-evolution.com] from every major wire service, newspaper, news weekly, and television network in the nation,”'

Re:

[l0n3s0m3phr34k]

Great source! The also say that ET stopped the US from setting a nuke off on the Moon" [collective-evolution.com], some excellent advise filed under "Health" about David Icke and Reptians [collective-evolution.com], and even this article [collective-evolution.com] which is basically several paragraphs off Wikipedia.

Not the NORKs

[PPH]

Wannacry is based on an exploit called EternalBlue [wikipedia.org] developed by the NSA. That North Koreas may have picked up a copy and re-targeted it demonstrates the threat of unchecked proliferation of such weapons by irresponsible organizations.

Don't worry

[quonset]

The con artist will defend this malware, just like he defended North Korea's brutal regime and its dictator, or the way he defends Putin and Russia's deliberate bombing of hospitals and civilians in Syria.

He'll probably even apologize for this malware simply because he admires dictators.

Re:

[l0n3s0m3phr34k]

"These people, they make the best malware. I thought Putin did it, but this is just fabulous. Everyone is talking about it, everyone is telling me this is the most best they've seen this year, if not ever."

Simple Solution

[amiga3D]

What we need to do is just blow NK to bits. Put 3 carrier groups offshore and just blow up every single bridge, railroad center, missile site, power plant, factory, and all other signs of modern infrastructure until it's been bombed back to the stone age. This should make CNN happy because they're doing every single thing in their power to try and make it happen.

USB fans anyone?

[SonarNerd]

Was this one included in the USB fans given to reporters during the NK - US summit? ;) :D