Slashdot Mirror

← Back to Stories (view on slashdot.org)

FBI: Wiper Malware Has Korean Language Packs, Hard Coded Targets

Posted by Soulskill on from the brace-for-cyber-impact dept.

chicksdaddy sends news that the FBI has issued a warning to U.S. businesses over a "destructive" malware campaign using advanced tools. They don't name specific targets, but the information fits with the details from last week's attack on Sony Pictures, which led to the leak of several unreleased movies. A copy of the FBI's recent five-page FLASH alert reveals that the malware alleged to have wiped out systems at Sony Pictures Entertainment deployed a number of malicious modules, including a version of a commercial disk wiping tool on target systems. Samples of the malware obtained by the FBI were also found to contain configuration files created on systems configured with Korean language packs. The use of Korean could strengthen theories that the destructive cyber attacks have links to North Korea, though it is hardly conclusive. It does appear that the attack was targeted at a specific organization. The malware analyzed by the FBI contained a hard coded list of IP addresses and computer host names.

3 of 81 comments (clear)

  1. How by fnj · · Score: 4, Funny

    WTF, overwrites the MBR? What half assed OS does this attack? Windows?

  2. Re:Malware? Sony? by xxxJonBoyxxx · · Score: 5, Funny

    >> Is the irony of Sony being hit by malware lost on people?

    At Sony, we just call it "software."

  3. Re:Corporate by TechyImmigrant · · Score: 4, Funny

    Who said Russian? I know an Israeli called Sergey.

    --
    I should use this sig to advertise my book ISBN-13 : 978-1501515132.