Just as of recent, Park Jin Hyok was indicted by the United States. Hyok was indicted with charges of Conspiracy and Conspiracy to Commit Wire Fraud. While his sole indictment was nothing more than identifying a person who was partly responsible in some major cyber attacks around the world since 2014, it helped to start to draw a line between the Lazarus Group and the government of North Korea. Furthermore, his capture itself can lead to exposure of other members of the Larazus Group. To give a little background in what the Lazarus Group is capable of, it takes a bit of history into the atrocities they have committed. In 2014, there was a hack on Sony because of the controversial movie “The Interview”. Next, in 2016, there was a hack on the Bangladesh bank for $81 million. In 2017, the WannaCry which affected well over 250,000 hospitals, corporations, and government agencies in 150 countries within 3 days.
But how could this one hacker from this group lead to the revelation of the sophisticated hacker group? While a huge email infrastructure is good for phishing and the perceived idea that things can be kept secret separate, it was a big reason that the US government were able to identify the vast email infrastructure. Well that and they got lucky because a purported supervisor sent a resume and sent how the “company was doing”, the company being Chosun Expo Joint Venture. Since revealing all the Gmail accounts, Eric Chien from Symantec Corp. has it on good authority that attacks from the Lazarus Group will undoubtedly come to a pause. While this is hardly anything close to being a closed case or bringing down an organization, it’s a spark that can light up the room of the shady Lazarus Group.
– Andres Orbe