US Government Warns North Korean Hackers Are Targeting Crypto Firms

Texas could raise funds through NFT and harness 'abundant' energy to mine Bitcoin

US Government Warns North Korean Hackers Are Targeting Crypto Firms For Hannah Perez

The report identified the North Korean malicious groups, Lazarus Group, APT38, BlueNorOff Y Stardust Chollimaand warned about phishing attacks against the crypto industry.

***

Companies in the crypto space could be under cyber threat from North Korean hackers, according to a US government advisory.

On Monday, three US government agencies jointly issued a warning about the threat posed by cyber tactics used by hacker groups believed to be state-sponsored in North Korea. The warning notes that malicious actors would be specifically targeting cryptocurrency companies.

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Treasury Department they posted the ad on the official CISA website. The notice reads:

The US government has observed North Korean cyber actors targeting a variety of organizations in the blockchain and cryptocurrency industry.

hackers North Koreans go after crypto companies

The report cites several target areas for attackers within the cryptocurrency industry, including “cryptocurrency exchanges, decentralized finance (DeFi) protocols, cryptocurrency video games to play to win, cryptocurrency trading companies, venture capital funds that invest in cryptocurrencies, and individual holders of large amounts of or valuable cryptocurrency non-fungible tokens (NFTs)“.

The agencies also mentioned hacking groups that have been identified: Lazarus Group, APT38, BlueNorOff Y Stardust Chollima. According to the report, the attacks directed by these organizations they present what is called an advanced persistent threat (APT). The term refers to a type of cybersecurity threat in which malicious actors can gain authorized access to computer systems undetected for long periods of time.

See also  Ark Invest's Cathie Wood Says "US Is Already in Recession" and Defends Crypto "Revolution"

The notice also addresses tactics frequently used by such hackers. These include campaigns of phishing and social engineeringwith the aim of deploying malicious applications that contain malware trojan. He adds that generally these campaigns are spread by emails sent to employees of crypto companies.

The US agencies also indicated that the aforementioned groups have already hacked several companies in the sector. They have found, for example, that Lazarus Group has used trojanized cryptocurrency applications from Apple Jeus to spread malware that facilitates the theft of digital assets.

As of April 2022, North Korean Lazarus Group actors have targeted various companies, entities, and exchanges in the Blockchain and cryptocurrency industry using spear phishing campaigns and malware to steal cryptocurrencies.

Lazarus Group attacked the network Axie Infinity

The advisory anticipates that it is very possible that North Korean hackers continue “exploiting the vulnerabilities of cryptocurrency technology companies” and lists some security procedures that firms and employees can take to avoid being victims of attacks.

The US government warning comes just days after the Treasury Department identified Lazarus responsible for the attack of more than USD $600 million on Ronin Networkthe popular game network Axie Infinity. However, this is not the first time the hacker group has been implicated in theft and hacking attacks on crypto projects.

See also  They will mine bitcoin with solar energy in the north of El Salvador

as you remembered The Blockin a report January 2022the blockchain analytics company chain analysis pointed out that Lazarus Group was involved in an attack on the cryptocurrency exchange KuCoins in 2020 and, in another to an undisclosed exchange in 2018. The two attacks generated revenue to Lazarus of more than USD$500 million. The organization has also targeted other US companies, including sony pictures in 2014.

The notice also coincides with the observations of the founder of DeFiance Capital, Arthur Cheong, who warned over one “organized campaign to target all prominent organizations in the crypto space” leadered by BlueNorOff. Cheong, who recently lost $1.7 million worth of NFTs and cryptocurrencies in a hack phishingwrote in a tweet:

It is critical that this industry is acutely aware that we are being actively targeted by a state sponsored cybercrime organization [norcoreano] who is extremely clever and sophisticated.


Recommended reading


Article by Hannah Estefanía Pérez / DailyBitcoin

Unsplash Image

WARNING: This is an informative article. DiarioBitcoin is a means of communication, it does not promote, endorse or recommend any investment in particular. It is worth noting that investments in crypto assets are not regulated in some countries. May not be suitable for retail investors as the full amount invested could be lost. Check the laws of your country before investing.

See also  MinTIC Colombia publishes second version of the guide for Blockchain adoption at the state level - DiarioBitcoin

Leave a Comment

Your email address will not be published.