On Saturday, multiple sources revealed that North Korean hackers have found a new victim in DeBridge Finance, a cross-chain interoperability and liquidity transfer protocol.
Based on DeBridge’s initial assessment, the attempted cyber attack likely originated from the Lazarus Group, the notorious North Korean hacking group.
Several members of the DeBridge team received a fake email containing a PDF of “New Salary Adjustments” allegedly sent by DeBridge co-founder Alex Smirnov.
According to Smirnov, a large number of DeBridge employees received emails from hackers. When viewing and downloading a PDF file, computers were infected with a malicious program that collects data.
“A quick investigation revealed that the text received captures many computer-related details and sends them to the attacker’s command and control centre,” Smirnov added.
17/ Leveling Indicators: CnC: www[.]googlesheet[.]informations
New salary adjustments. pdf (clean): 15a42f76f41c8f4bab828160e4fd39c2
New salary adjustments. pdf (with password): 00380fcbb2af75ec177301d44d658bc4
– DELEX (@AlexSmirnov__) August 5, 2022
Lazarus hackers behind high-profile attacks in recent years
Email spoofing is a type of attack in which malicious email is made to appear to come from a trusted source, in this case, a company’s founding partner.
Smirnov asserts that Lazarus Group hackers have used PDF names “new salary adjustments” in previous hacks, and warned all Web3 teams to remain vigilant for any similar intrusions.
Lazarus is responsible for some of the most notable security breaches in recent years, including the 2014 Sony hack.
The group is going after cryptocurrency-based companies around the world. It recently targeted the Ronin Bridge in Axie Infinity and received more than $622 million, making it the largest hack in crypto history.
Image: Bleeping Computer
Arthur Cheung, founder of DeFiance Capital, stated that Lazarus is simply one of several North Korean-backed cyber syndicates actively targeting the global crypto industry.
David Schwed, CEO of blockchain security company Halborn says:
“These types of attacks are very prevalent… they rely on people’s curiosity by labeling files on something that piques their curiosity, such as salary information.”
Cybersecurity firm Kaspersky reiterated Cheong’s warning, warning that a new group known as BlueNoroff is currently targeting crypto companies.
Buffett: Cyber attacks are a greater threat than nuclear weapons
Recently, the US Department of Justice recovered $500,000 from North Korean hackers who forced two US medical facilities to pay bitcoin ransoms.
Warren Buffett, billionaire businessman and philanthropist, sees cybercrime as one of the biggest problems and cyber attacks facing humanity as a greater threat to humanity than nuclear or biological weapons.
In April 1955, the contemporary definition of the term “hack” was coined at the Massachusetts Institute of Technology. The technology published the first recorded indication of a computer (telephone) hack in 1963.
The evolution of the world’s threat landscape – from phone systems to a massive data field – has outpaced humanity’s ability to protect it in the past few decades.
Crypto total market cap at $1.07 trillion on the daily chart | Source: TradingView.com Featured image from BitDegree, chart from TradingView.com