North Korean Hackers Targeted Phishing Scams on Telegram

North Korean Hackers mimic real venture capital firms, utilizing meeting apps for advanced phishing, compromising unsuspecting users.
North Korean Hackers Targeted Phishing Scams on Telegram

The Lazarus Group, a cyber group supported by North Korea, is becoming a greater threat to cryptocurrency groups. The organization is now focusing on Telegram users, alerts blockchain security company SlowMist.

A new tactic used by the hackers is to pretend to be venture capitalists from HashKey, Archax, and Gumi Cryptos in order to lure cryptocurrency teams in with offers of investments.

By luring users into executing malicious scripts during fictitious encounters, the attackers establish confidence through consistent messaging. The CEO of Showtime recently disclosed FBI alerts about Asian fraudsters using his computer to install malware under the guise of HashKey’s Head.

According to SlowMist, the Lazarus Group embeds harmful links covertly within event pages using Calendly’s “Add Custom Link” option to avoid detection. The company warns against relying on IP 104.168.137.21 since it has been connected to phishing activities.

According to reports, the North Korean-affiliated Lazarus Group has stolen $3 billion from the cryptocurrency market to fund weapons projects. Recent breaches, like as the Ronin bridge attack, have linked back to wallets connected to North Korea and have resulted in thefts exceeding $600 million.

According to Chainalysis, North Korean hackers have stolen over $3 billion in the last five years. This estimate is bolstered by South Korean reports of a $1.2 billion loss in 2022 alone.

The Lazarus Group of North Korea poses a growing cyber danger, which emphasizes the need for the bitcoin community to exercise increased caution and take preventative action.

More From The Kangaroo Times

Total
0
Shares
Related Posts
Total
0
Share