FBI and CSIA issue alert over North Korean cyberattacks on crypto targets

Share This Post

The cybersecurity agency believes that the threat from North Korean hackers will not go away unless crypto firms take necessary but simple steps to ensure their security.

The Cybersecurity and Infrastructure Security Agency (CISA) and FBI have issued an alert on North Korean state-sponsored cyber threats that target blockchain companies in response to the Ronin Bridge hack last month.

The alert was issued on April 18 in conjunction with the Federal Bureau of Investigation and the Treasury Department which had warnings and mitigation suggestions for blockchain and crypto firms to ensure their own operations remain safe from hackers.

Lazarus is not the only hacker group listed by name as an advanced persistent threat (APT). Included among Lazarus are APT38, BlueNoroff, and Stardust Chollima. These groups and others like them have been observed targeting what the bulletin called “a variety of organizations in the blockchain technology and cryptocurrency industry,” such as exchanges, decentralized finance (DeFi) protocols, and play-to-earn games.

Their efforts filled their coffers with $400 million in stolen crypto funds in 2021 according to a report from Chainalysis. The regime has already topped that amount this year with the Ronin Bridge hack from which it extracted about $620 million in crypto in late March.

The CSIA does not believe the rate of thefts will see a downturn any time soon as it stated that groups are using spearphishing and malware to steal crypto. It added that:

“These actors will likely continue exploiting vulnerabilities of cryptocurrency technology firms, gaming companies, and exchanges to generate and launder funds to support the North Korean regime.”

Kim Jong Eun’s staunch refusal to dismantle his nuclear weapons program forced the U.S. to levy some of the harshest economic sanctions ever against his country. This has led him to turn to cryptocurrency to fund the nuclear weapons program since his cash flows through traditional means have been almost entirely sealed off.

While the alert goes into greater detail about exactly how these groups use malware such as AppleJeus to target blockchain and crypto firms, it also offers suggestions on how users can mitigate the risk to themselves and their users’ funds. Most of the recommendations are common sense security procedures such as using multi-factor authentication on private accounts, educating users on common social engineering threats, blocking newly registered domain emails, and endpoint protection.

Related: The aftermath of Axie Infinity’s $650M Ronin Bridge hack

The laundry list of mitigation strategies firms should take to ensure they are secure from harm include all sensible suggestions, however, the CSIA believes that education and awareness of the existent threat is one of the best strategies.

“A cybersecurity aware workforce is one of the best defenses against social engineering techniques like phishing,” it concluded.

Read Entire Article
spot_img
- Advertisement -spot_img

Related Posts

TEAMZ Web3・AI Summit 2025: Bringing Global Leaders to Tokyo

PRESS RELEASE TEAMZ is proud to announce that the TEAMZ Web3・AI Summit 2025 will take place on April 16-17, 2025, at the Toranomon Hills in Tokyo This summit is one of Japan’s largest

Semler Scientific Reports Half-Year BTC Yield of 37.3%, Acquires Additional 215 Bitcoin

Semler Scientific has reported a significant 373% bitcoin yield since implementation of its bitcoin treasury strategy Bitcoin Strategy Yielding Gains for Semler Scientific Semler Scientific has

Spot Bitcoin ETF options set to debut this week following OCC approval, analysts predict

The Office of the Comptroller of the Currency (OCC) stated in a Nov 18 memo that it is “preparing for the clearance, settlement, and risk management” of options trading on

The Year Of Solana: 2024 Sees Global Crypto Love Surge Nearly 40%

Solana (SOL) has emerged as a winner in the digital asset landscape as it captured the title of being the most popular blockchain ecosystem in 2024, according to the latest ranking of CoinGecko

Bitcoin’s Surge Could Just Be The Beginning Of A Sustained Rally: Tom Lee

The post Bitcoin’s Surge Could Just Be The Beginning Of A Sustained Rally: Tom Lee appeared first on Coinpedia Fintech News Fundstrat Head of Research Tom Lee has recently highlighted that

Bitwise: US Bitcoin Reserve Speculations Propel Crypto Market Gains

Recent findings from Bitwise’s Weekly Crypto Market Compass for Week 47, 2024, reveal an upbeat trajectory for cryptocurrency markets, with bitcoin leading the charge Its performance has