Reconnaissance General Bureau Korea Computer Center Nonserviam Cyber Warfare Command
Affiliations
Bureau 121, Unit 180, AndAriel
Formerly called
APT38 Gods Apostles Gods Disciples Guardians of Peace ZINC Whois Team Hidden Cobra
Preview warning: Page using Template:Infobox organization with unknown parameter "part of"
Lazarus Group (also known as Guardians of Peace or Whois Team[1][2][3]) is a hacker group made up of an unknown number of individuals, alleged to be run by the government of North Korea. While not much is known about the Lazarus Group, researchers have attributed many cyberattacks to them between 2010 and 2021. Originally a criminal group, the group has now been designated as an advanced persistent threat due to intended nature, threat, and wide array of methods used when conducting an operation. Names given by cybersecurity organizations include Hidden Cobra (used by the United States Department of Homeland Security to refer to malicious cyber activity by the North Korean government in general)[4][5] and ZINC or Diamond Sleet[6] (by Microsoft).[7][8][9] According to North Korean defector Kim Kuk-song, the unit is internally known in North Korea as 414 Liaison Office.[10]
The Lazarus Group has strong links to North Korea.[11][12] The United States Department of Justice has claimed the group is part of the North Korean government's strategy to "undermine global cybersecurity ... and generate illicit revenue in violation of ... sanctions".[13] North Korea benefits from conducting cyber operations because it can present an asymmetric threat with a small group of operators, especially to South Korea.[14]
^
"North Korea Designations; Global Magnitsky Designation". U.S. Department of the Treasury. 2019. LAZARUS GROUP (a.k.a. "APPLEWORM"; a.k.a. "APT-C-26"; a.k.a. "GROUP 77"; a.k.a. "GUARDIANS OF PEACE"; a.k.a. "HIDDEN COBRA"; a.k.a. "OFFICE 91"; a.k.a. "RED DOT"; a.k.a. "TEMP.HERMIT"; a.k.a. "THE NEW ROMANTIC CYBER ARMY TEAM"; a.k.a. "WHOIS HACKING TEAM"; a.k.a. "ZINC"), Potonggang District...
^
"Lazarus Group | InsightIDR Documentation". Rapid7. Andariel, Appleworm, APT-C-26, APT38, Bluenoroff, Bureau 121, COVELLITE, Dark Seoul, GOP, Group 77, Guardian of Peace, Guardians of Peace, Hastati Group, HIDDEN COBRA, Labyrinth Chollima, Lazarus, NewRomantic Cyber Army Team, NICKEL ACADEMY, Operation AppleJesus, Operation DarkSeoul, Operation GhostSecret, Operation Troy, Silent Chollima, Subgroup: Andariel, Subgroup: Bluenoroff, Unit 121, Whois Hacking Team, WHOis Team, ZINC
^
"NICKEL ACADEMY | Secureworks". secureworks.com. Black Artemis (PWC), COVELLITE (Dragos), CTG-2460 (SCWX CTU), Dark Seoul, Guardians of Peace, HIDDEN COBRA (U.S. Government), High Anonymous, Labyrinth Chollima (CrowdStrike), New Romanic Cyber Army Team, NNPT Group, The Lazarus Group, Who Am I?, Whois Team, ZINC (Microsoft)
^"Lazarus Group, HIDDEN COBRA, Guardians of Peace, ZINC, NICKEL ACADEMY, Group G0032 | MITRE ATT&CK®". MITRE ATT&CK. MITRE Corporation.
^"How Microsoft names threat actors". Microsoft. Retrieved 21 January 2024.
^"Microsoft and Facebook disrupt ZINC malware attack to protect customers and the internet from ongoing cyberthreats". Microsoft on the Issues. 2017-12-19. Retrieved 2019-08-16.
^"FBI thwarts Lazarus-linked North Korean surveillance malware". IT PRO. Retrieved 2019-08-16.
^Guerrero-Saade, Juan Andres; Moriuchi, Priscilla (January 16, 2018). "North Korea Targeted South Korean Cryptocurrency Users and Exchange in Late 2017 Campaign". Recorded Future. Archived from the original on January 16, 2018.
^"Drugs, arms, and terror: A high-profile defector on Kim's North Korea". BBC News. 2021-10-10. Retrieved 2021-10-11.
^"Who is Lazarus? North Korea's Newest Cybercrime Collective". www.cyberpolicy.com. Retrieved 2020-08-26.
^Beedham, Matthew (2020-01-09). "North Korean hacker group Lazarus is using Telegram to steal cryptocurrency". Hard Fork | The Next Web. Retrieved 2020-08-26.
^Cite error: The named reference :11 was invoked but never defined (see the help page).
^"BBC World Service - The Lazarus Heist, 10. Kill switch". BBC. Retrieved 2022-04-21.
LazarusGroup (also known as Guardians of Peace or Whois Team) is a hacker group made up of an unknown number of individuals, alleged to be run by the...
Look up Lazarus in Wiktionary, the free dictionary. Lazarus may refer to: Lazarus (name), a surname and a given name Lazarus of Bethany, a Biblical figure...
member of a North Korea's government-funded hacking team known as “LazarusGroup (or APT 38)” and worked for Chosun Expo Joint Venture (aka Korea Expo...
the miracles of Jesus. In the Eastern Orthodox Church, Lazarus is venerated as Righteous Lazarus, the Four-Days Dead. The Eastern Orthodox and Catholic...
Television had acquired a majority stake in the new company, The Silverbach-LazarusGroup, which is a Los Angeles-based home video and television company, which...
of Saint Lazarus in Italy was merged with the Order of Saint Maurice under the House of Savoy to form the Order of Saints Maurice and Lazarus, which still...
said the code has some similarities with that previously used by the LazarusGroup (believed to have carried out the cyberattack on Sony Pictures in 2014...
Translations. Emma Lazarus was born in New York City, July 22, 1849, into a large Jewish family. She was the fourth of seven children of Moses Lazarus, a wealthy...
Microsoft, Samsung and Nvidia, and with members arrested in March 2022. LazarusGroup, with strong links to the North Korean government, involved in the Sony...
worth of cryptocurrency from the project. The hackers were linked to LazarusGroup, funded by North Korea. According to the company's website, Axie Infinity...
attribution of seven 2021 cryptocurrency thefts to the North Korean LazarusGroup. Working with American investigators and the South Korean National Intelligence...
Christian biblical Gospel of John, in which Jesus Christ raised Lazarus from the dead. Lazarus taxa are observational artifacts that appear to occur either...
Dunkley said that Cold Lazarus is "astonishing". Many of the futuristic costumes made for the actors to wear in Cold Lazarus were later bought by the...
ether. Ronin Network hack – in March 2022, North Korean state-sponsored LazarusGroup used hacked private keys to withdraw $625 million in ether and USDC...
including $455 million believed to have been stolen in 2022 by the LazarusGroup, a hacking group associated with the government of North Korea. The same day...
The use of the mixer Tornado Cash in the laundering of funds by the LazarusGroup led the Office of Foreign Assets Control to sanction it, prompting some...
of investigating the suspects, records of funds being transferred to LazarusGroup were also discovered. It is unclear whether it is related to the ongoing...
including Symantec Corp and BAE Systems, claimed that the North Korea-based LazarusGroup, one of the world's most active state-sponsored hacking collectives...
Bible, in which Christ raises his friend Lazarus from death. It catches the moment of resurrection when Lazarus opens his eyes and the reaction of the crowd...
Lazarus McCarthy Chakwera (born 5 April 1955) is a Malawian politician and theologian who has served as President of Malawi and minister of defence since...
cryptocurrency mining. In May 2022, Bleeping Computer reported that the LazarusGroup cybercrime group, which is possibly linked to North Korea, was actively using...