The new malware has been named by Kaspersky experts ATMDtrack and has been spotted on the networks of Indian banks since late summer 2018. Kaspersky researchers said that the malware strain had many similarities with the malware used in ‘Operation DarkSeoul’, which is a series of attacks aimed against South Korean targets in 2013.
Those attacks have been attributed to the Lazarus Group, a cyber-espionage outfit operating for the North Korean government. In September 2019, the US Treasury had sanctioned the North Korean hacker group for orchestrating cyber-attacks on banks, ATM networks, gambling sites, online casinos, and cryptocurrency exchanges to steal money from legitimate businesses and raise funds for the countrys weapons and missile programs.
Thus, the discovery of the ATMDTrack malware strain comes to support and justify the US Treasurys decision to sanction any entities associated with this group, fitting right into Lazarus normal mode of operation, according to ZDnet.
Every day we send out a free e-mail with the most important headlines of the last 24 hours.
Subscribe now