1 day ago
38
Cyberattacks originating from the state scope from societal engineering attempts to assaults connected exchanges and tin instrumentality a twelvemonth to play out.
North Korean cyberwarfare attacks connected the cryptocurrency manufacture are increasing successful sophistication and successful the fig of groups progressive successful specified transgression activity, crypto steadfast Paradigm warns successful study titled “Demystifying the North Korean Threat.”
North Korea-originated cyberattacks scope from assaults connected exchanges and societal engineering attempts to phishing attacks and analyzable proviso concatenation hijacks, the study says. In immoderate cases, the attacks instrumentality a twelvemonth to play out, with North Korean operatives biding their time.
The United Nations estimates that betwixt 2017 and 2023, North Korean hackers person netted the state $3 billion. The full haul has skyrocketed successful 2024 and this year, with palmy attacks against crypto exchanges WazirX and Bybit, which unneurotic netted attackers astir $1.7 billion.
Paradigm writes that the North Korean organizations orchestrating these attacks fig astatine slightest five: Lazarus Group, Spinout, AppleJeus, Dangerous Password, and TraitorTrader. There is besides a conjugation of North Korean operatives who airs arsenic IT workers, infiltrating tech companies astir the world.
Related: Typosquatting successful crypto, explained: How hackers exploit tiny mistakes
High-profile attacks and predictable laundering methods
Lazarus Group, the astir well-known North Korean hacking team, is fixed recognition for immoderate of the astir high-profile cyberattacks since 2016. According to Paradigm, the radical hacked Sony and the Bank of Bangladesh successful 2016 and helped orchestrate the WannaCry 2.0 ransomware onslaught successful 2017.
It has besides taken purpose astatine the cryptocurrency industry, sometimes to large effect. In 2017, the radical deed 2 crypto exchanges — Youbit and Bithumb. In 2022, Lazarus Group exploited the Ronin Bridge, resulting successful hundreds of millions successful mislaid assets. And successful 2025, it infamously stole $1.5 cardinal from Bybit, sending daze passim the crypto community. The radical whitethorn beryllium behind immoderate Solana memecoin scams.
As Chainalysis and different organizations person explained, Lazarus Group besides has predictable wealth laundering methods aft securing a haul. It breaks up the stolen magnitude into smaller and smaller pieces, sending them to countless different wallets. It past swaps the much illiquid coins for those with higher liquidity and converts overmuch of it to Bitcoin (BTC). After that, the radical whitethorn beryllium connected the stolen wealth for a agelong play of clip until the attraction from instrumentality enforcement dies down.
The FBI has truthful acold identified 3 alleged members of the Lazarus Group, accusing them of cybercrimes. In February 2021, the US Justice Department indicted 2 of those members for engagement successful planetary cybercrimes.
Magazine: Lazarus Group’s favourite exploit revealed — Crypto hacks analysis
English (US) ·