STOCK MARKET BSE NSE

North Korean hacker group stole USD 571 million in crypto attacks

Lazarus is a hacking group which has been linked to a string of attacks against everything from banks to government agencies across the world.

Published: 20th October 2018 03:15 PM  |   Last Updated: 20th October 2018 03:19 PM   |  A+A-

Image for representational purpose only.

By IANS

SAN FRANCISCO: Amid growing crypto-jacking episodes, a North Korean hacking group called Lazarus has stolen cryptocurrencies worth more than half a billion dollars.

According to The Next Web that cited findings from the annual report of cybersecurity vendor Group-IB late on Friday, Lazarus was behind 14 hacking attacks on cryptocurrency exchanges since January 2017 -- stealing USD 571 million.

ALSO READ | Crypto hackers attack Elon Musk's Twitter account again

Lazarus is a hacking group which has been linked to a string of attacks against everything from banks to government agencies across the world.

Hackers targeted cryptocurrency exchanges with spear phishing, social engineering and malware.

"Spear phishing remains the major vector of attack on corporate networks. For instance, fraudsters deliver malware under the cover of CV spam [with an attachment] that has a malware embedded in the document," the findings showed.

Group-IB expects the number of targeted attacks on cryptocurrency exchanges to rise, and not just the ones from Lazarus.

Nearly 10 per cent of the total funds raised by Initial Coin Offering (ICO) platforms over the past year and a half have been stolen.

According to the report, large phishing groups are capable of stealing USD 1 million a month.

Fraudsters are even building fake websites using stolen cryptocurrency project descriptions and plagiarized white papers.

"Fraudulent phishing-schemes involving crypto-brands will only get more complex as well as cybercriminals' level of preparation for phishing attacks," the group warned.

Security researchers have claimed that North Korea-based advanced persistent threat (APT) groups are increasingly attacking financial institutions and Bitcoin exchanges.

There were on average five new threat samples every second that resulted in a massive 629 per cent growth in crypto jacking and other cryptocurrency mining malware in the first quarter of 2018.

The coin miner malware grew a stunning 629 per cent to 2.9 million in the first quarter of 2018, from around 400,000 total known samples in Q4 2017, said a recent report from global cybersecurity firm McAfee.

ALSO READ | Hackers steal USD15.3 million from Mexico financial system​

The Lazarus cybercrime group launched a highly sophisticated Bitcoin-stealing phishing campaign -- HaoBao -- which targeted global financial organisations and Bitcoin users.

When recipients open malicious email attachments, an implant would scan for Bitcoin activity and establishes an implant for persistent data gathering and crypto mining.



Comments

Disclaimer : We respect your thoughts and views! But we need to be judicious while moderating your comments. All the comments will be moderated by the newindianexpress.com editorial. Abstain from posting comments that are obscene, defamatory or inflammatory, and do not indulge in personal attacks. Try to avoid outside hyperlinks inside the comment. Help us delete comments that do not follow these guidelines.

The views expressed in comments published on newindianexpress.com are those of the comment writers alone. They do not represent the views or opinions of newindianexpress.com or its staff, nor do they represent the views or opinions of The New Indian Express Group, or any entity of, or affiliated with, The New Indian Express Group. newindianexpress.com reserves the right to take any or all comments down at any time.

flipboard facebook twitter whatsapp