Notorious Hacker Group Lazarus Is Targeting The Cryptocurrency Industry Via LinkedIn – Warns Security Firm

Notorious Hacker Group Lazarus Is Targeting The Cryptocurrency Industry Via LinkedIn – Warns Security Firm
фото показано с : zycrypto.com

2020-8-26 15:56

Blockchain and cryptocurrency professionals on LinkedIn are under a new phishing threat that’s targeting them disguised as crypto-related job offers advertised on the platform.

A new report by Finland-based Cyber Security Firm F-secure has linked the attack to one of the most infamous and allegedly State-backed North Korean hacking group, Lazarus, which targets organizations globally for financial gains.

F-Secure stated that unsuspecting professions received a fake blockchain listing message which included a word document with an embedded malicious code. F-Secure found that certain details of the document such as word count, authors, and names were similar to previously archived malware by VirusTotal internet security website.

The report said that the malware would execute upon opening the document and fetch important information from the victim’s computer or phone, such as logins to crypto wallets and steal crypto funds.

F-secure further ascertained that the attack was meticulously calculated, with Lazarus going to great lengths to cover their tracks by trying to erase any traces that could be linked back to the hackers.

“Lazarus Group invested significant effort to evade the target organization’s defenses during the attack, such as by disabling anti-virus software, on the compromised hosts, and removing evidence of their malicious implants.”

Lazarus Group Is Expanding Attacks in the Crypto Space

While Lazarus has been linked to multiple large-scale attacks on many institutions in the past including banks, this is the second time that the group is directly targeting the crypto industry.

In October 2019, Lazarus used a fake cryptocurrency exchange to target Apple Mac users by creating a backdoor into their computers.

The firm is now advising targeted organizations to use the information to protect their networks and slow down the hackers in the future, which will also raise their cost of operations.

“It is F-Secure’s assessment  that the group will continue to target organizations within the cryptocurrency vertical while it remains such a profitable pursuit, but may also expand to target supply chain elements of the vertical to increase returns and longevity of the campaign.”

Lazarus Is Part of North Korea’s Army of Hackers

Lazarus is part of two other hacking groups Andariel and Bluenoroff which are all alleged to be under the control of the North Korean Intelligence Bureau. In September 2019, the US Treasury announced sanctions on all three groups following their multiple attacks on institutions in the US, Canada, Europe, Australia, Japan, and more.

The US government has also accused the Lazarus group of being behind the large-scale 51% cryptocurrency attacks that saw the hackers net over $571 million across different exchanges. Some of their famous malware include WannaCry RansomWare and Cryptoworm.

A report released in July stated that North Korea has an army of over 6000 hackers who are trained to carry out different kinds of cyber-attacks. While no arrests have ever been made, the groups managed to make away with hundreds of millions repeatedly which the UN says North Korea uses to fund its Nuclear weapons program.

Similar to Notcoin - Blum - Airdrops In 2024

origin »

Lazarus (LAZ) на Currencies.ru

$ 0 (+0.00%)
Объем 24H $0
Изменеия 24h: 0.00 %, 7d: 0.00 %
Cегодня L: $0 - H: $0
Капитализация $0 Rank 99999
Доступно / Всего 0 LAZ

security firm new cryptocurrency linkedin group lazarus

security firm → Результатов: 126


US Travel Firm Pays 414 Bitcoin worth $4.5 million to Hackers

US travel management company CWT paid 414 Bitcoin, worth $4.5 million, to hackers who stole sensitive corporate files and reportedly knocked 30,000 computers offline. Crypto exchange Binance CEO said, “Again, not bitcoin's fault, but as we inevitably evolve into a more digital civilization, all businesses new and old will need to revamp their security practices.” […]

2020-8-2 01:30


Zilliqa blockchain appoints Onchain Custodian for crypto custody services

Zilliqa, the high-performance and high-security blockchain platform, today announced that it has selected Singapore-based crypto custody service Onchain Custodian to secure its network’s assets. In working with the firm, the Zilliqa ecosystem will benefit from institutional-grade security and insured custody services for its ZIL and ZRC-2 tokens.

2020-7-30 17:09


Securitize Japan Joins Self-Regulatory Association, JSTOA, To Scale Market Opportunities

The Japan subsidiary of SEC approved digital token offering firm, Securitize, has joined the country's Security Token Offering Association (JSTOA). Securitize Japan debuts as the first international token issuer in the self-regulatory association as it seeks to expand its footprint in one of the most crypto advanced jurisdictions. This move comes months after the firm […]

2020-6-22 14:49


Fireblocks Hits $30B In Digital Asset Transfers; Expands into APAC With 2 New Offices

Leading crypto security startup, Fireblocks has announced it is opening new offices in Asia in Singapore as well as Hong Kong. On April 30, Fireblocks revealed that its platform has so far transferred digital assets worth $30 billion and at the moment conducts transactions worth more than $7 billion every month. The firm revealed that […]

2020-5-1 00:07


Increased Safeguards Is Needed For Crypto Growth As Nearly $10B Has Been Stolen: KPMG

Ever since 2017, hackers have stolen over $9.8 billion in digital assets due to poorly written code or lax security, according to a KPMG report from Monday. Furthermore, the accounting firm added that the adoption of cryptocurrencies like Bitcoin (BTC) and Ether (ETH) by institutional investors has increased competition amongst investors seeking to occupy a […]

2020-3-3 23:42


Cybersecurity firm Sophos introduces “Xstream” version of XG Firewall

Sophos, a global leader in next-generation cybersecurity, today introduced a new “Xstream” architecture for Sophos XG Firewall with high-performance Transport Layer Security (TLS) traffic decryption capabilities that eliminate significant security risk associated with encrypted network traffic, which is often overlooked by security teams due to performance and complexity concerns.

2020-2-19 19:19