www.unuudur.com » Surprise! North Korea’s official news site delivers malware, too

Surprise! North Korea’s official news site delivers malware, too

[Нийтэлсэн: 15:55 14.01.2015 ]

www.arstechnica.com

A security researcher examining the website of North Korea’s official news service, the Korean Central News Agency, has discovered that the site delivers more than just the latest photo spread of Democratic Peoples’ Republic of Korea leader Kim Jong Un inspecting mushroom farms. There’s a little extra surprise hidden in the site’s code—malware. The news site appears to double as a way for North Korea to deliver a “watering hole” attack against individuals who want to keep tabs on the “activities” of the DPRK’s dear leader.

Ars has independently verified a reference within part of the site’s JavaScript code called from the home page to a download named “FlashPlayer10.zip.” The file, which is set as a JavaScript variable “FlashPlayer” on the site’s main page and on other site pages, contains two files labeled as Windows executable installers containing updates for the long-since obsolete Flash Player 10—one for an alleged ActiveX control, and the other for a browser plug in. Both are identical files, and they contain a well-known Windows malware dropper, based on an analysis through the malware screening site Virustotal.

by Sean Gallagher



Шинээр

Copper price bears are out as first surplus in six years predicted
[Нийтэлсэн: 04.04.2018 ]
[Эх сурвалж: ]
Rio Sees $5 Billion Copper Expansion on Track Amid Probe
[Нийтэлсэн: 27.03.2018 ]
[Эх сурвалж: ]
Rio to build power plant at Oyu Tolgoi copper-gold mine in Mongolia
[Нийтэлсэн: 26.02.2018 ]
[Эх сурвалж: ]
Apple in talks to buy cobalt directly from miners
[Нийтэлсэн: 22.02.2018 ]
[Эх сурвалж: ]
Australian coal exports valued at AUS$56.5 billion in 2017
[Нийтэлсэн: 19.02.2018 ]
[Эх сурвалж: ]
Armed Forces celebrate graduation of officers from Mongolia
[Нийтэлсэн: 19.02.2018 ]
[Эх сурвалж: ]

Get Flash to see this player.