Korean People's Army soldiers leave after paying their respects before the statues of late North Korean leaders. Photo: Ed Jones / AFP via Getty

The Homeland Security Department's Computer Emergency Readiness Team warned industry stakeholders about two types of malware Tuesday. The warning attributed the Joanap and Brambul malware to the North Korean government.

Why it matters: It is uncommon for the U.S. to make any public attribution for a cyberattack. Generally, that only happens when there is both definitive evidence for the attack and a strategic reason to name who was responsible for it. While the potential strategic aspects of the attribution may raise some eyebrows — it comes out as a former North Korean official travels to New York to meet with the administration — there may be a more mundane explanation.

Be smart: The U.S. has attributed a campaign of attacks it calls Hidden Cobra (which most others call Lazarus) to North Korea in the past. The Joanap and Brambul tools are a component of the Lazarus campaign, meaning the attribution might be more about linking this report to prior reports than embarrassing Pyongyang.

The details: Joanap and Brambul appear to have been in use since at least 2009.

  • Targets in the U.S. and beyond include the media, aerospace, financial, and critical infrastructure sectors, according to the report.
  • Joanap offers North Korea a to run a variety of commands on computers it infects, including stealing information, modifying files and directories, controlling botnets and installing more malware.
  • Brambul is a worm that travels through networks to find credentials North Korea can use in later attacks, as well as provide Lazarus with other recon on infected systems.

Go deeper

Updated 45 mins ago - Politics & Policy

Coronavirus dashboard

Illustration: Sarah Grillo/Axios

  1. Politics: The swing states where the pandemic is raging. Ex-FDA chief: Pence campaigning after COVID exposure puts others at risk — Mark Meadows: "We are not going to control the pandemic"
  2. Health: 13 states set single-day coronavirus case records last week — U.S. reports over 80,000 new cases for second consecutive day.
  3. Education: The dangerous instability of school re-openings.
  4. World: Australian city to exit one of world's longest lockdowns — In photos: Coronavirus restrictions grow across Europe
  5. Media: Fox News president and several hosts advised to quarantine after possible COVID-19 exposure
  6. Nonprofit: Rockefeller Foundation commits $1 billion for COVID-19 recovery
Erica Pandey, author of @Work
1 hour ago - Economy & Business

The dangerous instability of school re-openings

Illustration: Eniola Odetunde/Axios

Schools across the country have flip-flopped between in-person and remote learning — and that instability is taking a toll on students' ability to learn and their mental health.

The big picture: While companies were able to set long timelines for their return, schools — under immense political and social strain — had to rush to figure out how to reopen. The cobbled-together approach has hurt students, parents and teachers alike.

Dan Primack, author of Pro Rata
2 hours ago - Politics & Policy

Trump doesn't have a second-term economic plan

Illustration: Aïda Amer/Axios

President Trump has not laid out an economic agenda for his second term, despite the election being just eight days away.

Why it matters: This is unprecedented in modern presidential campaigns, and makes it harder for undecided voters to make an informed choice.

Get Axios AM in your inbox

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Subscription failed
Thank you for subscribing!