Banks and security researchers have previously identified four similar cyber-heists attempted on financial institutions in Bangladesh, Ecuador, the Philippines and Vietnam.
|North Korean Flag|
To hide their location, hackers typically launch cyber attacks from computer servers far from home.
“North Korea is a very important part of this equation,” said Vitaly Kamluk, who leads Kaspersky’s Asia-Pacific research team.
In 2013, when South Korea’s banks and broadcasters were attacked, that government blamed its neighbour to the north. In 2014, the US government blamed North Korea for the hack on Sony Pictures.
Clues in both cases pointed to Lazarus.
Researchers said these hackers intend to attack major Western banks using increasingly sophisticated methods.
CNN ran those addresses through internet records kept by DomainTools, a cyber security firm. Those IP addresses belong to the World Bank, as well as the central banks of Brazil, Chile, Estonia, Mexico and Venezuela, as well as a wide range of well known global banks.
“This is all for their nuclear weapons and missile programmes. They need this money for building and researching more ballistic missiles,” said Anthony Ruggiero, a senior fellow for Foundation for Defence of Democracies who tracks North Korea’s illegal behaviour.