CandleFocus

North Korean Hackers Target Crypto Firms in ‘Hidden Risk’ Campaign

Hack research firm SentinelLabs has linked a recent hacking campaign to BlueNoroff, a subgroup of the Lazarus Group known for funding North Korea's nuclear and weapons programs. The campaign aims to extract funds from the decentralized and under-regulated crypto industry. The FBI has issued warnings about North Korean cyber actors targeting employees of DeFi and ETF firms through social engineering campaigns. The hackers' latest campaign focuses on breaching crypto exchanges and financial platforms using phishing emails disguised as crypto news alerts. Users who click on the links unwittingly download a malicious application onto their Macs, which bypasses Apple's security protections. The malware uses hidden system files to remain undetected and communicates with remote servers controlled by the hackers. Users are advised to tighten security measures and be aware of the risks.

Related News