North Korean hackers have launched attacks using a new FASTCash malware variant for Linux. The malware targets financial organizations’ Ubuntu 22.04 LTS-based payment switch systems to facilitate unauthorized ATM transactions. The malware alters transaction messages to enable ATM withdrawals of amounts between 12,000 and 30,000 Turkish Lira, according to cybersecurity researcher HaxRob. The discovery indicates the continued evolution of such adversaries’ toolset.
North Korea Hackers Get Cash Fast in Linux Cyber Heists
North Korean hackers are using the ‘FASTCash’ malware, which targets Linux systems, to infiltrate banks and illicitly withdraw money in Turkish currency by modifying ISO