Stay up to date with notifications from The Independent

Notifications can be managed in browser preferences.

North Korean hackers linked to Sony Pictures attack have servers seized in Thailand

Hackers from the notorious Lazarus Group had compromised computer servers at a university in Thailand and used them to carry out the 2014 Sony Pictures attack

Anthony Cuthbertson

Monday 30 April 2018 16:48 BST

Hackers believed to be backed by North Korea have been responsible for some of the most high-profile cyber attacks in recent years (AFP/Getty Images)

Police in Thailand have seized a computer server operated by a notorious hacker group from North Korea.

The group affected has been blamed for the infamous Sony Pictures hack in 2014.

Thailand’s Computer Emergency Response Team (ThaiCERT) announced that it took control of the equipment that the security firm McAfee had linked to Hidden Cobra – also known as the Lazarus Group – that is believed to be behind a number of high-profile attacks.

A report from McAfee Advanced Threat Research found that a campaign referred to as Operation GhostSecret has been targeting critical infrastructure, entertainment, finance, healthcare, telecommunications and other key industries.

Sony Cyber Attack: The Worst Affected In Hollywood

Show all 13

1/13Sony Cyber Attack: The Worst Affected In Hollywood

Sony Cyber Attack: The Worst Affected In Hollywood

Leonardo DiCaprio

The actor's 'horrible behaviour' over Steve Jobs biopic was branded 'actually despicable' in leaked Sony executive emails

Getty Images

Sony Cyber Attack: The Worst Affected In Hollywood

Seth Rogen

Seth Rogen and James Franco cancel Interview (North Korea-baiting film) press appearances after Sony hackers' threats

Sony Cyber Attack: The Worst Affected In Hollywood

James Franco

Seth Rogen and James Franco cancel Interview press appearances after Sony hackers' threats

AP

Sony Cyber Attack: The Worst Affected In Hollywood

Aaron Sorkin

The screenwriter has said that the people who hacked into Sony Entertainment Pictures and released private emails are 'threatening the lives of whole families'

Theo Wargo | Getty Images for Nantucket Film Festival

Sony Cyber Attack: The Worst Affected In Hollywood

Amy Pascal

Also leaked: Sony Pictures co-chair Amy Pascal's email joking about President Barack Obama's race

Getty Images

Sony Cyber Attack: The Worst Affected In Hollywood

George Clooney

Leaked email chain between Pascal and George Clooney appeared to reveal just how much the actor struggled to cope with the criticism of his The Monuments Men

Getty

Sony Cyber Attack: The Worst Affected In Hollywood

Barack Obama

Sony executives Scott Rudin and Amy Pascal's leaked email exchange jokes about Barack Obama favouring films with black actors

Getty

Sony Cyber Attack: The Worst Affected In Hollywood

Channing Tatum

Channing Tatum's leaked Sony executive email responding to the success of 22 Jump Street with Jonah Hill, which became the highest grossing R-rated comedy ever when it opened in June this year

Getty Images

Sony Cyber Attack: The Worst Affected In Hollywood

Jaden and Willow Smith

Will Smith and Jada Pinkett Smith's children Willow and Jaden Smith found themselves in the Sony inbox as well

Getty

Sony Cyber Attack: The Worst Affected In Hollywood

Mark Gordon

DiCaprio's exchange with Jobs TV producer Mark Gordon (pictured) was leaked too

Getty Images

Sony Cyber Attack: The Worst Affected In Hollywood

Princess Beatrice

Sony hackers linked to North Korea revealed Princess Beatrice earns $30,000 a year

Sony Cyber Attack: The Worst Affected In Hollywood

Michael Fassbender

Aaron Sorkin's leaked emails claimed he had no idea who actor Michael Fassbender (pictured) was

Getty Images

Sony Cyber Attack: The Worst Affected In Hollywood

Scott Rudin

Information leaked has also included embarrassing emails involving high profile producer Scott Rudin attacking Angelina Jolie

Getty Images

The group behind the campaign has been using the same malware as that used in the 2014 Sony Pictures attack, which saw vast amounts of confidential data stolen from the film studio.

“This analysis by the McAfee Advanced Threat Research team has found previously undiscovered components that we attribute to Hidden Cobra, which continues to target organizations around the world,” the researchers reported.

One of the servers identified in the report that had been used by the group was housed at Thammasat University in Bangkok, Thailand.

ThaiCERT said that it was working with McAfee to analyze the compromised server in an effort to understand ongoing threats and assist any potential victims.

The McAfee researchers also discovered a new type of malware that has been carrying out attacks undetected since 2017.

The report detailed how the unknown attack method was connected to recent operations involving servers in India, which hackers have been exploiting to establish a secret network to carry out future attacks.

Join our commenting forum

Join thought-provoking conversations, follow other Independent readers and see their replies