North Korean hackers ramp up cryptocurrency stealing during pandemic

3 min


Lazarus, the hacking group who were responsible for the 2014 Sony Pictures and 2016 Bangladesh Bank cyber heists, are now being implicated in the latest attacks from North Korea.

According to a press release from ESTsecurity, a cyber security located in Seoul, South Korea, the group had begun targeting cryptocurrency firms.

The released said: “The APT (adaptive persistent threats) hacking group Lazarus, which is allegedly sponsored by a certain government [North Korea], is increasingly engaging in cybercrime activities in and out of South Korea.

Advertisements

“Lazarus is carrying out APT attacks not only in South Korea but also in the international sphere, including the United States.

“They are also engaging in cyber-espionage operations as well as activities designed to generate foreign currency.”

Countdown blunder: Rachel Riley's huge mistake after replacing Carol Vorderman exposed

A North Korean hacking group is increasing efforts to steal cryptocurrency. (Image: PA)

Countdown blunder: Rachel Riley's huge mistake after replacing Carol Vorderman exposed

Lazarus, the hacking group, were responsible for the 2014 Sony Pictures and 2016 Bangladesh Bank cyber heists. (Image: PA)

The security company warned that these attacks could lead to financial damage.

The press release also went on to explain: “Malicious emails used in these attacks mention companies that provide electronic payment services.

“The hackers attached malicious files disguised as blockchain software development contracts from those payment companies and induced the targets into opening them.”

Advertisements

ESTsecurity’s report explained these attacks use “spear phishing,” where a scammer baits victims using information specific to their interests after obtaining detailed information on them.

Countdown blunder: Rachel Riley's huge mistake after replacing Carol Vorderman exposed

The UK has been found to be the country most susceptible to phishing attacks in Europe (Image: Express)

According to the “National Strategy for Combating Terrorist and Other Illicit Financing 2020” report released by the US Treasury Department in February, from 2017 to 2018, Lazarus was among three North Korean hacking groups that managed to steal USD 571 million in cryptocurrency from five exchanges in Asia.

Analysts say that stealing cryptocurrency could bring enormous profits to a country now completely isolated from the rest of the world following the closure of the Sino-North Korean border in late January due to the COVID-19 pandemic.

Security experts are emphasising that joint countermeasures should be taken against North Korean cyber attacks, which are connected to other North Korean espionage groups such as Kimsuky, Kony, and Gumsong 121.

Countdown blunder: Rachel Riley's huge mistake after replacing Carol Vorderman exposed

According to a press release from ESTsecurity, a cyber security located in Seoul, South Korea, the group had begun targeting cryptocurrency firms. (Image: PA)

Advertisements

It comes as US cybersecurity officials have published details about three malware strains that have been used by North Korea’s government-sponsored hackers to attack targets all over the world.

The announcement coincided with the three-year anniversary of the WannaCry ransomware outbreak, which US officials have formally blamed on the Pyongyang regime, and have even gone as far as to press charges against one of the hackers.

They included Copperhedge, which is a remote access trojan (RAT) capable of running arbitrary commands, performing system reconnaissance, and exfiltrating data, with six different variants identified.

Taintedscribe and Pebbledash are malware implants (trojan) that are installed on hacked systems to receive and execute the attacker’s commands.

Countdown blunder: Rachel Riley's huge mistake after replacing Carol Vorderman exposed

It follows pressure from economic sanctions against North Korea has increased by the United Nations, the European Union and the U.S. over nuclear arms and military concerns against the backdrop of fresh coronavirus cases being reported on the peninsula. (Image: PA)

It also follows pressure from economic sanctions against North Korea has increased by the United Nations, the European Union and the U.S. over nuclear arms and military concerns against the backdrop of fresh coronavirus cases being reported on the peninsula.

The increased attempts of theft in cryptocurrencies come as fresh news reports of a potential “second wave” in South Korea on Monday.

Advertisements

There have been 34 new cases of the deadly virus, its highest daily number in a month as reported by Seven News Australia.

Figures remain unclear in highly secretive North Korea.

However, the total number of cases in the south has reached over 10,900, with 256 deaths in total, according to Worldometer.


Like it? Share with your friends!

70
11 shares, 70 points

What's Your Reaction?

hate hate
14
hate
confused confused
4
confused
fail fail
21
fail
fun fun
18
fun
geeky geeky
16
geeky
love love
9
love
lol lol
11
lol
omg omg
4
omg
win win
21
win

0 Comments

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Facebook Comments

Choose A Format
Personality quiz
Series of questions that intends to reveal something about the personality
Trivia quiz
Series of questions with right and wrong answers that intends to check knowledge
Poll
Voting to make decisions or determine opinions
Story
Formatted Text with Embeds and Visuals
List
The Classic Internet Listicles
Countdown
The Classic Internet Countdowns
Open List
Submit your own item and vote up for the best submission
Ranked List
Upvote or downvote to decide the best list item
Meme
Upload your own images to make custom memes
Video
Youtube, Vimeo or Vine Embeds
Audio
Soundcloud or Mixcloud Embeds
Image
Photo or GIF
Gif
GIF format