The Asan Institute for Policy Studies: Pyongyang is concentrating its cyber warfare on hacking financial institutions to reduce the impact of international sanctions.
FireEye cyber security experts: The goal is to steal personal information, thanks to SEAWEED, CACHEMONEY and POWBAT malware. They could work with APT34.
Tehran wants to make ships disappear from international radar, to hide routes and destinations, bypassing the bans on the sale of oil abroad.
Palo Alto Networks: It has ties with Konni, used for over 3 years in multiple campaigns with a heavy interest in the Korean peninsula and surrounding areas.
The cyber security researchers discovered a cyber attacks campaign against a Seoul think tank, connected to the Lazarus Group.
Fireeye: the China-linked Tonto and the Turla hackers from Russia will target Seoul at “an increased pace” ahead of the US-North Korea presidents summit.
McAfee: The lure are North Korean political topics and the vector of attacks fake Microsoft Word documents. It has been used a new variant of the SYSCON backdoor.
A cyber aggression disrupted the Games opening ceremonies in Republic of Korea. No official info on the source, but Olympics were affected by another attack with malware in January.