Who is Lazarus Group?

Lazarus Group is a threat actor attributed to KP, also known as BeagleBoyz, NICKEL GLADSTONE, ATK3. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does Lazarus Group exploit?

Specific CVE exploitation data for Lazarus Group is being tracked. Check the Strobes VI threat actor profile for updates.

Lazarus Group

Also known as: BeagleBoyz, NICKEL GLADSTONE, ATK3, Hidden Cobra, Bureau 121, ATK117, NewRomanic Cyber Army Team, DEV-0139, DEV-1222, Whois Hacking Team, Operation Troy, Unit 121, APT-C-26, APT38, G0032, Operation AppleJeus, Operation DarkSeoul, Subgroup: Bluenoroff, TA404, Andariel, Hastati Group, Zinc, COPERNICIUM, COVELLITE, Appleworm, Sapphire Sleet, Lazarus group, Bluenoroff, Dark Seoul, Moonstone Sleet, Citrine Sleet, G0082, Operation GhostSecret, Group 77, Labyrinth Chollima, APT 38, Stardust Chollima, ZINC, Diamond Sleet, Nickel Academy

Exploited CVEs

Overview

Since 2009, HIDDEN COBRA actors have leveraged their capabilities to target and compromise a range of victims; some intrusions have resulted in the exfiltration of data while others have been disruptive in nature. Commercial reporting has referred to this activity as Lazarus Group and Guardians of Peace. Tools and capabilities used by HIDDEN COBRA actors include DDoS botnets, keyloggers, remote access tools (RATs), and wiper malware. Variants of malware and tools used by HIDDEN COBRA actors include Destover, Duuzer, and Hangman.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database