Skip to main content

North Korea hackers targeted think tanks, activists: Microsoft

San Francisco: Microsoft has revealed that a North Korea-linked hacker group has stolen sensitive personal information of government employees, think tanks, university staff members, members of organisations focused on world peace and human rights, as well as individuals who work on nuclear proliferation related issues.
Microsoft has now gained control of 50 domains that the group uses to conduct its operations, the company said on Monday. With this action, the sites can no longer be used to execute attacks.
A court case against the hacker group, called Thallium, filed in the US District Court for the Eastern District of Virginia, resulted in a court order enabling Microsoft to take control of the web domains, Microsoft Customer Security and Trust Vice President Tom Burt said in a blog post.
Microsoft's Digital Crimes Unit (DCU) and the Microsoft Threat Intelligence Center (MSTIC) has been tracking and gathering information on Thallium, monitoring the group's activities to establish and operate a network of websites, domains and Internet-connected computers.
This network was used to target victims and then compromise their online accounts, infect their computers, compromise the security of their networks and steal sensitive information. Most targets were based in the US, as well as Japan and South Korea, Burt said.
Like many cybercriminals and threat actors, Thallium typically attempts to trick victims through a technique known as spear phishing.
By gathering information about the targeted individuals from social media, public personnel directories from organisations the individual is involved with and other public sources, Thallium is able to craft a personalised spear-phishing email in a way that gives the email credibility to the target. The link in the email redirects the user to a website requesting the user's account credentials.
By tricking victims into clicking on the fraudulent links and providing their credentials, Thallium is then able to log into the victim's account. Upon successful compromise of a victim account, Thallium can review emails, contact lists, calendar appointments and anything else of interest in the compromised account.
The hackers often also creates a new mail forwarding rule in the victim's account settings. This mail forwarding rule will forward all new emails received by the victim to Thallium-controlled accounts. By using forwarding rules, Thallium can continue to see email received by the victim, even after the victim's account password is updated.
"You can protect yourself from these types of attacks in at least three ways. We recommend, first, that you enable two-factor authentication on all business and personal email accounts," Burt said.
"Second, learn how to spot phishing schemes and protect yourself from them. Third, enable security alerts about links and files from suspicious websites and carefully check your email forwarding rules for any suspicious activity," he added.

Comments

Post a Comment

Popular posts from this blog

Akshay Kumar, Priyanka Chopra, Aamir Khan and more mourn Rishi Kapoor's death

While we were still trying to process the news of Irrfan Khan's demise, another saddening news has come our way. Veteran actor Rishi Kapoor has passed away. He breathed his last on Thursday, April 30. His brother Randhir Kapoor had recently shared that Rishi Kapoor's cancer had relapsed. Last night, Rishi was rushed to Mumbai's Sir H. N. Reliance Foundation Hospital. Ever since the tragic news broke, celebrities and fans have been taking to social media to mourn the loss.  Aamir Khan tweeted, "We have lost one of the greats today. An amazing actor, a wonderful human being, and 100% a child of Cinema. Thank you for all the joy you brought to our lives. Thank you for being the actor and human being that you were. You will be badly missed Rishiji. Love. a." Aamir Khan ✔ @aamir_khan We have lost one of the greats today. An amazing actor, a wonderful human being, and 100% a child of Cinema. Thank you for all the joy you brought to our lives. ...
1 comment
Read more

Anushka Sharma's crazy dinosaur video featuring Virat Kohli gets an amusing reply from Ranveer Singh

Yesterday Anushka Sharma shared a super funny video of Virat Kohli moving around the house like a dinosaur. Here's how Ranveer Singh and many other celebrities reacted to the craziness. Ever since Anushka Sharma posted a video of Virat Kohli imitiating a dinosaur, the internet hasn't stopped laughing and wondering what's up with the couple. After all, it's not a usual sight watching the captain of the Indian Cricket team trying to be ape an animal. Of course, brownie points to Virat for coming so close to walking and sounding like a dinosaur but then who would have thought Virushka will reach this level of craziness one day? Perhaps, it's the lockdown effect and anything that screams entertainment is more than welcome on the internet. You will be amused to see how Ranveer Singh reacted to the video. Within minutes after Anushka shared this hilarious video of Virat by saying, "I spotted .... A Dinosaur on the loose", Ranveer was among the first celebrities ...
Post a Comment
Read more

Republic Day 2020: ITBP personnel salute the nation at 17,000 feet in Ladakh's freezing temperature

Ladakh:  The Indo-Tibetan Border Police (ITBP) personnel celebrated India's 71st Republic Day at 17,000 feet in the freezing temperature of Ladakh. The temperature in Ladakh is minus 20 degrees Celsius. A video shared by news agency ANI shows the 'Himveers' dressed in white uniforms and chanting slogans of "Bharat Mata ki Jai" and "Vande Mataram" as the Tricolour flies high on the snowy mountains. Two of the soldiers held the Tricolour as they marched in the snow. ANI ✔ @ANI # WATCH Indo-Tibetan Border Police (ITBP) personnel with the national flag celebrating Republic Day at 17000 feet in snow today. The temperature in Ladakh at present is minus 20 degrees Celsius. 'Himveers' chanting 'Bharat Mata Ki Jai' and 'Vande Mataram'. 10.4K 8:31 AM - Jan 26, 2020 Twitter Ads info and privacy 2,872 people are talking about this While sharing the video of the...
Post a Comment
Read more