Slashdot Mirror

← Back to Stories (view on slashdot.org)

FBI: Wiper Malware Has Korean Language Packs, Hard Coded Targets

Posted by Soulskill on from the brace-for-cyber-impact dept.

chicksdaddy sends news that the FBI has issued a warning to U.S. businesses over a "destructive" malware campaign using advanced tools. They don't name specific targets, but the information fits with the details from last week's attack on Sony Pictures, which led to the leak of several unreleased movies. A copy of the FBI's recent five-page FLASH alert reveals that the malware alleged to have wiped out systems at Sony Pictures Entertainment deployed a number of malicious modules, including a version of a commercial disk wiping tool on target systems. Samples of the malware obtained by the FBI were also found to contain configuration files created on systems configured with Korean language packs. The use of Korean could strengthen theories that the destructive cyber attacks have links to North Korea, though it is hardly conclusive. It does appear that the attack was targeted at a specific organization. The malware analyzed by the FBI contained a hard coded list of IP addresses and computer host names.

3 of 81 comments (clear)

  1. Re:As a malware analyst... by kruach+aum · · Score: 4, Interesting

    I would also imagine that the kind of person involved in this sort of attack is aware of the capabilities of the people investigating the attack, and that such a person would be interested in confounding that investigation by, say, pretending to be someone he's not, like a Korean language user.

  2. Sony chose to wage war against North Korea by Anonymous Coward · · Score: 0, Interesting

    The UK, USA and NATO have all said, in the last year, that they have the 'right' to interpret psychological operations (psy-ops) by 'foreign powers' as 'ACTS OF WAR', and respond - including with the use of conventional weaponry.

    Well Sony has financed a film by a well-known Hollywood UBER-zionist specifically designed as a psy-op against North Korea and its leadership. An 'act of war' under the rules of NATO/UK/USA. And its seems that North Korea has struck back at Sony, just as NATO/UK/USA stated THEY would strike back at anyone pulling the same stunt against themselves.

    Sony is a Japanese company, but was ONLY allowed to buy its way into Hollywood when its Japanese supremo's agreed to allow Israel-friendly managers to direct Sony's film output in their desired propaganda directions. Japan has been a servant state to Israel and the USA since their defeat in WW2. Japan, for instance, was FORCED to introduce sanctions against Russia over events in East Ukraine at great financial loss, despite the fact that Israel, Saudi Arabia and Egypt (powers in the US sphere of control) were NOT required to sanction Russia, and haven't to this day (bet you Slashdot Betas didn't know that little fact).

    Sony's vicious attack against North Korea in their upcoming major Hollywood movie was a project dear to the hearts of those that really rule the USA. These 'friends of Israel' are actually DELIGHTED that the Hollywood 'outsider' has been devastated as a 'reward' for attempting to serve their zionist masters on their knees. No matter how much Sony creeps to the zionists, Sony is still loathed for daring to think it has a place in Hollywood.

    Most first class cyber-attacks emanate from Israel, usually in conjunction with their 'cousins' in East Europe nations like Ukraine. This is because Israel Military Intelligence shares knowledge of current inbuilt exploits with the NSA, and most of those within Israeli Military Intelligence have close friends in various Jewish crime gangs located across the planet. The means to attack Sony will have been carefully 'gifted' to the Koreans by the same team Sony tries so hard to please.

    What you 'earn' while you remain ON YOUR KNEES is worthless- a lesson Japan is going to learn the hard way. But when Japan finally gets off its knees, things are going to get VERY bloody in that part of the world again. But this is the age old cycle with Japan.

    To conclude with the moral of this story- when you choose to kick another country in the face, do NOT act surprised when they hit you back- hard. The US arrogance is that the US exists above all Laws of Man, and entities associated with the USA tend to inherent this depraved way of thinking.

  3. Re:As a malware analyst... by dunkindave · · Score: 4, Interesting

    I like to apply Occam's Razor. Having dealt with a variety of hackers ranging from newbies up to APT, I have found almost all of them make stupid mistakes and do things like this that leak info. I have yet to see a convincing false-flag since attackers would rather hide their origin than fake it, meaning they try to remove all such info instead of putting in fake info. Given my experience I have no trouble whatsoever believing the indicators of the Korean language pack presence on the origination computers is a strong lead for where it came from. The current beef that NK has against Sony due to the upcoming film, along with they specific threats, just adds to it as corresponding motive, like the cherry on top of the sundae.