Central American Online Casino

#OnlineCasino • 2017-10

Unknown

#FinancialGain #Cryptocurrency

ESET attributed attacks against a Central American online casino to Lazarus, citing overlapping toolsets, telemetry, Lazarus-linked malware, and shared static characteristics. The intrusions used service-oriented NukeSped backdoors, session hijacking, credential theft tools including modified Mimikatz, remote access tooling, and Win32/KillDisk.NBO destructive payloads deployed across more than 100 casino systems, likely serving cover-up, extortion, or sabotage objectives.

2

Related Reports
0

Affected Countries
104

Months Since

Related Actors

Bluenoroff

Kaspersky

Lazarus Under The Hood

First seen: 2017-04 • Last seen: 2026-05

Related Reports

2021-02-17

USJustice

Three North Korean Military Hackers Indicted in Wide-Ranging Scheme to Commit Cyberattacks and Financial Crimes Across the Globe

#News #WannaCry #Blockbuster #BangSwift #NiceHash #FEIB #Bancomext #Bithumb2 #NigerianBank #TPBank #BankofValletta #KNF #BankIslami #OnlineCasino #Indodax #MarineChain #NYFSC

2018-04-03

ESET

Lazarus KillDisks Central American casino

#KillDisk #OnlineCasino #Lazarus

« Back