North Korean-linked hackers are attempting to spread a new ransomware strain known as VHD. Lazarus APT Group has been linked to several major cyber attacks, including the 2014 Sony Pictures hack, several SWIFT banking attacks since 2016, and the 2017 WannaCry ransomware infection. VHD ransomware implements the standard features of ransomware, experts noticed that it can also suspend processes that could prevent files from being encrypted (such as Microsoft Exchange or SQL Server) Kaspersky Lab researchers also published the Indicators of Compromise (IoCs) in their report.”]
Source: https://securityaffairs.co/wordpress/106511/cyber-warfare-2/vhd-ransomware-lazarus.html