Researchers say Lazarus Group used commercially available ransomware in attacks on targets in Middle East and US
North Korean cybercriminals have adopted commercially available malware to expand their extortion campaigns against the U.S. health care sector, according to cybersecurity researchers.
DPRK actors operating under the Lazarus Group umbrella organization used the Medusa ransomware in an attack on a target in the Middle East, U.S. cybersecurity firms Symantec and Carbon Black said in a report Tuesday.
Researchers also observed the same actors launching an unsuccessful attack against a health care organization in the U.S., the report added.
The report said the Medusa attacks are “undoubtedly the work of
