North Korea may be using Flash to spy on Seoul
Share this on

North Korea may be using Flash to spy on Seoul

SOUTH KOREA’S Computer Emergency Response Team (KrCERT) has found malicious code which exploits a bug in Adobe Flash, causing victims’ machines to be compromised with malware.

KrCERT claims that North Korean agencies are hiding code in Office documents, emails and websites which exploit the bug to infect PCs.

Flash runs on a variety of browsers and platforms, but no instances have yet been noticed “in the wild” of any other platform than Windows being compromised in this manner.

SEE ALSO: North Korean elites watch porn too, just like the West

Simon Choi, director of the security research centre at Korean cybersecurity company Hauri, has claimed North Koreans are using the exploit to eavesdrop on parties investigating their southern neighbours.

One common method of deployment for the malware is to send spreadsheets to victims, which contain hidden Flash content. The code then uses the Flash loophole to drop its payload.

Specially constructed websites also contain the hidden content; this attack type can be mitigated by preventing Flash from auto-running in browser settings.

SEE ALSO: Is there really a North Korean spy nest in Malaysia?

Adobe has acknowledged the issue and has said it will release a patch this week. The company has previously announced that it will cease support for the Flash plug-in in 2020. According to Google, fewer than 20 percent of websites use Flash content, which is being rapidly replaced by Web GL or HTML 5.

Flash was developed by Macromedia in the 1990s, the company being subsumed into Adobe in 2005, which also gained the DreamWeaver application – for some time the standard go-to website creation tool for the creative industry.

KimJongUn-897x500

North Korean leader Kim Jong Un inspects a newly established Pyongyang trackless trolley factory. Source: KCNA/via Reuters

While Flash-heavy websites had a brief heyday in the 2000s, security concerns prevented the format becoming standard. Originally developed as a multimedia plug-in for web browsers, Adobe tried to push the code as a mobile application platform, but never really met with much success.

The most common use for Flash today is in online games, much beloved of Facebook and other social apps’ users. Mark Zuckerberg has however stated that his company’s platforms will cease support for Flash in 2020, in line with Adobe.

The best remediation for security concerns around Flash is simply not to use it. Adobe publishes a range of options to either suspend Flash’s operations or to remove it altogether.

This article was originally published on our sister website Tech Wire Asia