• Latest
  • Trending

North Korean Lazarus Group is targeting crypto funds with a new spin on an old trick

December 6, 2022
Democratizing Crypto Mining: ZT Mining’s Cloud-Based Revolution

Democratizing Crypto Mining: ZT Mining’s Cloud-Based Revolution

February 19, 2025
What Happens When Global Economies Adopt Crypto?

What Happens When Global Economies Adopt Crypto?

February 19, 2025
Electronic Money Association Announces 2025 Conference: Innovate, Compete, Succeed

Electronic Money Association Announces 2025 Conference: Innovate, Compete, Succeed

January 24, 2025
ADVERTISEMENT
Hong Kong Pioneering Digital Currency: Project e-HKD+

Hong Kong Pioneering Digital Currency: Project e-HKD+

January 24, 2025
Revolutionizing Medical Staffing: How NurseBee is Transforming Healthcare with Blockchain

Revolutionizing Medical Staffing: How NurseBee is Transforming Healthcare with Blockchain

January 23, 2025
$PBIRD Token: Resilience and Growth Potential

$PBIRD Token: Resilience and Growth Potential

January 23, 2025
Crypto Industry Celebrates Trump’s Inauguration with Optimism

Crypto Industry Celebrates Trump’s Inauguration with Optimism

January 18, 2025
Trump’s $TRUMP Meme Coin Launches, Surges in Value

Trump’s $TRUMP Meme Coin Launches, Surges in Value

January 18, 2025
Bitcoin’s Historic Surge to 0,000 Ignites Social Media Frenzy

Bitcoin’s Historic Surge to $100,000 Ignites Social Media Frenzy

January 18, 2025
Tony Parisi’s Metatron Studio: Pioneering a New Era of Metaverse Entertainment

Tony Parisi’s Metatron Studio: Pioneering a New Era of Metaverse Entertainment

January 23, 2025
FiX25 Fintech Islands Experience: Catalyzing Innovation in the Caribbean

FiX25 Fintech Islands Experience: Catalyzing Innovation in the Caribbean

January 23, 2025
Cryptocurrency Fraud Case Highlights Data Privacy and Security Challenges

Cryptocurrency Fraud Case Highlights Data Privacy and Security Challenges

December 18, 2024
Monday, June 30, 2025
Submit Press Release

No products in the cart.

No Result
View All Result

No products in the cart.

No Result
View All Result
No Result
View All Result

North Korean Lazarus Group is targeting crypto funds with a new spin on an old trick

December 6, 2022
in Crypto
Reading Time: 2 mins read

Microsoft reports that an attacker targeting cryptocurrency investment startups has been identified. One party, dubbed his DEV-0139 by Microsoft, masqueraded as a cryptocurrency investment firm on Telegram and used Excel files weaponized with “crafted” malware to infect and remotely access systems. did.

This threat is part of a trend of highly sophisticated attacks. In this case, the threat actor falsely identified himself with a fake profile of an OKX employee and joined a Telegram group used to facilitate communication between VIP clients and cryptocurrency exchange platforms. I have written In a Dec. 6 blog post. Microsoft explained:

“we are [] We review more complex attacks where threat actors demonstrate superior knowledge and preparation and take steps to gain the trust of their targets before deploying payloads.

In October, Target was invited to a new group and asked for feedback on an Excel document comparing VIP pricing structures from OKX, Binance and Huobi. While this document provided accurate information and demonstrated a high degree of awareness of the realities of cryptocurrency trading, it was found to invisibly create a malicious .dll (Dynamic Link library) files were sideloaded. The target was then asked to open the .dll file himself during the course of the fee discussion.

The attack technique itself has been known for some time. Microsoft has suggested that the threat actor is the same one found using .dll files for similar purposes in his June, possibly behind other incidents. According to Microsoft, DEV-0139 is the same actor as cybersecurity firm Volexity. linked It was sent to North Korea’s state-run Lazarus Group using a malware variant known as AppleJeus and an MSI (Microsoft Installer).U.S. Federal Cybersecurity and Infrastructure Security Agency documented AppleJeus in 2021, and Kaspersky Labs report in 2020.

RELATED: North Korean Lazarus Group Claimed Behind Ronin Bridge Hack

YOU MAY ALSO LIKE

The US Treasury has officially linked the Lazarus Group to North Korea’s nuclear weapons program.