[BEWARE] FBI Discovers New North Korean Malware: BLINDINGCAN Can Erase Its Traces to Avoid Detection

Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have identified North Korean hackers' new backdoor malware called BLINDINGCAN.

The US government exposed the remote access trojan (RAT) malware after publishing an analysis report today (Aug 20).

U.S. Government Identifies North Korean New Backdoor Malware: BLINDINGCAN Can Avoid Detection
U.S. Government Identifies North Korean New Backdoor Malware: BLINDINGCAN Can Avoid Detection Screenshot from Twitter post of @privilege

As reported first by Bleeping Computer, the North Korean hackers used the malware to attack targeted government contractor and that the RAT malware is linked to Lazarus Group and APT38. These are two North Korean government-sponsored hacking groups.

The trojan was found with built-in functions for remote operations that provide various capabilities on a victim's system.

The agencies' analysis wrote that CISA received two Dynamic-Link Libraries (DLLs) and four Microsoft Word Open Extensible Language (XML) documents.

The hackers used 64-bit and 32-bit DLL that install a 32-bit and a 64-bit DLL named "iconcache.db," which executes and unpacks a variant of Hidden Cobra RAT, to connect to external domains for a download. BLINDINGCAN can also avoid detection by removing itself from compromised systems and clean its traces.

Best antivirus apps and softwares in 2020

According to ZDNet's previous report, although modern operating systems protect different devices from viruses and malware, malicious software is rapidly evolving that perform phishing, identity theft, intercepting internet traffic and ransomware. However, there is antivirus software that can still protect your devices. Here are the best antivirus apps and software.

U.S. Government Identifies North Korean New Backdoor Malware: BLINDINGCAN Can Avoid Detection
U.S. Government Identifies North Korean New Backdoor Malware: BLINDINGCAN Can Avoid Detection Nahel Abdul Hadi on Unsplash

Norton 360 Deluxe

This security software is a one-size-fits-all package that can protect up to five Macs, PCs, Android devices, iOS. Here are Norton 360 Deluxe's features.

- Browsing securely and anonymously with no-log VPN.

- Can protect personal information when browsing "Dark Web."

- Parental Controls.

- Password manager.

- SafeCam webcam security.

- Can defend against emerging and existing malware threats using advanced, multi-layered protection.


Kaspersky Total Security

This security app sits in the background of your device and will only pop-up once you need its help. Kaspersky Total Security offers a five-device license that covers Mac, iPhone, iPad, Windows, and Android devices for a yearly subscription. It comes with a vast range of features, including payment protection and advanced parental controls.

For more news updates on how to protect your devices from malware and other viruses, always keep your tabs open here at TechTimes.

Also Read: SpyCloud To Prevent 'Account Takeovers' By Raising $30 Million to Improve Security Products


This article is owned by TechTimes,

Written by: Giuliano de Leon.

ⓒ 2024 TECHTIMES.com All rights reserved. Do not reproduce without permission.
Join the Discussion
Real Time Analytics