Slashdot Mirror

← Back to Stories (view on slashdot.org)

North Korean Hackers Infiltrate Chile's ATM Network After Skype Job Interview (zdnet.com)

Posted by msmash on from the stranger-things dept.

A Skype call and a gullible employee was all it took for North Korean hackers to infiltrate the computer network of Redbanc, the company that interconnects the ATM infrastructure of all Chilean banks. From a report: Prime suspects behind the hack are a hacker group known as Lazarus Group (or Hidden Cobra), known to have associations to the Pyongyang regime, is one of the most active and dangerous hacking groups around, and known to have targeted banks, financial institutions, and cryptocurrency exchanges in the past years. Lazarus' most recent attack took place at the end of December last year but only came to the public's attention after Chilean Senator Felipe Harboe called out Redbanc on Twitter last week for not disclosing its security breach. The company, which has direct lines into the networks of all Chilean banks, formally admitted to the hack a day later in a message posted on its website, but that announcement didn't include any details about the intrusion. However, a day after Redbanc's admission, an investigation conducted by Chilean tech news site trendTIC revealed that the financial firm was the victim of a serious cyber-attack, and not something that could be easily dismissed. According to reporters, the source of the hack was identified as a LinkedIn ad for a developer position at another company to which one of the Redbanc employees applied.

5 of 44 comments (clear)

  1. For the Record by lazarus · · Score: 4, Funny

    Just for the record, I had nothing to do with this.

    --
    I am not interested in articles about life extension advancements.
    1. Re:For the Record by Headw1nd · · Score: 4, Funny
      I'm sorry, but we have to look at the facts here, the most important being your UID.

      4-digit UID = international cybercriminal, no exceptions.

  2. Misleading title... by Fuzi719 · · Score: 4, Informative

    The title makes it seem as if Skype was the infection vector, but reading the article will tell you it wasn't. The problem, as usual, is stupid people doing stupid things, "during this interview [the Skype call], the Redbanc employee was asked to download, install, and run a file named ApplicationPDF.exe, a program that would help with the recruitment process and generate a standard application form." Yes, Skype is a mess, but it didn't infect the computer system.

  3. This was posted too close to lunch. by jellomizer · · Score: 3, Funny

    I read the title, and I was thinking of Chilie's Bar and Grill, (a somewhat popular food chain in the US). I was picturing some early 20 something store manager, just getting tricked by this guy. Then I read a little further realize it was the country.

    --
    If something is so important that you feel the need to post it on the internet... It probably isn't that important.
  4. Re:Malicious attribution by ShanghaiBill · · Score: 3, Interesting

    North Korea has nothing to gain by doing flippant things like this

    Actually, they do gain. If NK behaved like a "normal" country, they would be treated like one. But by regularly engaging in batshit insane behavior, they lower expectations so much that when we sit down to negotiate with them, we are happy to accept any outcome that is even halfway sane, even they though have a long pattern of not keeping their word.

    The Kim family regime has controlled NK for more than 70 years. Even longer than the Castro family has controlled Cuba. Their strategy of egregious behavior has worked well for them.