loader gif

US government publishes new details on HIDDEN COBRA's HOPLIGHT malware

US government publishes new details on HIDDEN COBRA's HOPLIGHT malware (Malware and Vulnerabilities)

The US government has put out a security alert today about a new malware strain used by North Korean hackers, which the US government has named HOPLIGHT. The report, authored by malware analysts from the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI), attributes the HOPLIGHT malware to HIDDEN COBRA, the US government's designation for North Korea's main government-backed hacking group, also referred to in news articles and cyber-security reports as the Lazarus Group. "The variants of HOPLIGHT malware attributed to North Korean malicious cyber activity are new, it has not been publically released before today," an official for the DHS' Cybersecurity and Infrastructure Security Agency (CISA) told ZDNet. Today's HOPLIGHT report is the DHS and FBI's sixteenth report on North Korean malware. "Generally, when CISA releases alerts on state-sponsored activity we receive some reports from infected victims," the CISA official told ZDNet. All the DHS' previous reports are available on this page, including the one on HOPLIGHT, which also comes with indicators of compromise that organizations can use to scan their networks for traces of HOPLIGHT.

loader gif