Hackers da Coreia do Norte criam empresas nos EUA para enganar desenvolvedores de criptomoedas

Hackers cibernéticos oriundos da Coreia do Norte estabeleceram duas empresas nos Estados Unidos, o que constitui uma grave violação das sanções impostas pelo Tesouro norte-americano. Esses grupos, que atuam sob a bandeira de Blocknovas e Softglide, têm como objetivo infectar máquinas de desenvolvedores envolvidos no setor de criptomoedas com software malicioso. A informação foi confirmada por pesquisadores na área de segurança, que analisaram documentos relevantes e forneceram detalhes à Reuters.(...)

Leia a noticia completa no link abaixo:

https://www.inspirednews.com.br/hackers-da-coreia-do-norte-criam-empresas-nos-eua-para-enganar-desenvolvedores-de-criptomoedas

https://www.techi.com/north-korean-cyber-spies-caught-us-created-crypto-firms-disguise/

Bybit Hack: A North Korea Issue, Not a Crypto Issue – Expert Insights

Experts Debate the Bybit Hack as a North Korea Issue Rather than a Crypto Security Flaw. The recent Bybit hack has sparked widespread debate across the cryptocurrency community. While many initially pointed to flaws within crypto security, experts are now emphasizing that this particular breach is more of a geopolitical issue, with links to North Korea’s notorious Lazarus Group. This shift in perspective underscores the complexity of digital asset security and highlights the growing intersection of global politics and the world of crypto.

According to Crucible Capital's Meltem Demirors, the Bybit hack represents an advanced cyber operation rather than a breakdown of cryptocurrency infrastructure. Demirors explained that the intrusion was the result of social engineering strategies commonly used by North Korean-backed hackers who had previously targeted digital assets. This trend of sophisticated hacking operations raises concerns about the vulnerability of cryptocurrency exchanges and wallets, despite the blockchain's claimed security. Also Read:   aleksei-andriunin-extradited-to-the-u-s-for-market-manipulation-charges/ TrustedSec CEO David Kennedy explained on the nature of the assault. He added that the Lazarus Group, known for exploiting flaws in digital platforms, carried out a well-planned operation that included extensive investigation into Bybit's exchange and wallet infrastructure. This was not a random attack, but rather a planned assault based on a thorough understanding of crypto security mechanisms and vulnerabilities. What distinguishes this hack from others is the approach employed to conceal the stolen monies. The attackers shifted the monies over a network of 50,000 addresses, making it far more difficult for investigators to locate the stolen assets. Despite these measures, the security of Bybit's cold storage—which housed the majority of users' assets—remained unaffected. This demonstrates the value of cold storage as a safe haven in the cryptocurrency ecosystem, particularly in the face of increasingly sophisticated attacks. Demirors was eager to point out that, while the occurrence was concerning, it should not be interpreted as a general indictment of cryptocurrency security. Bitcoin's cold storage security protections have remained strong, and as the industry grows, so will its ability to respond to such threats. As Demirors pointed out, this collaborative response is one of the defining characteristics of the changing landscape of digital asset security. Finally, the Bybit breach serves as a reminder of the ongoing threat posed by state-sponsored cyber actors. As North Korea continues to use its cyber capabilities to fund its objectives, the bitcoin industry must stay watchful and proactive in combating these dangers. This geopolitical dimension of crypto security is gaining importance, bridging digital finance and international diplomacy. Read the full article

Trasferiti 4,8m$ di dollari in bitcoin dei 41m$ hackerati

Hacker responsabili della rapina da 41 milioni di dollari trasferiscono BNB e MATIC. Un totale di 4,8 milioni di dollari di fondi sono stati spostati dall'hacker su Bitcoin e Avalanche. Secondo la società di sicurezza blockchain CertiK, gli hacker responsabili della violazione di 41 milioni di dollari del crypto casinò Stake verificatasi il 4 settembre hanno trasferito altri 328.000$ di token Polygon. Il recente trasferimento ha riguardato 300 BNB (per un valore di circa 61.500$) verso un indirizzo esterno "0x695", successivamente collegato l'11 settembre in bridge alla blockchain Avalanche. Altri 520.000 MATIC per un valore di oltre 266.000$ sono stati trasferiti su Avalanche sette ore prima, alle 7:18 UTC. #CertiKSkynetAlert Stiamo assistendo a un ulteriore movimento di fondi da parte dell'exploiter di Stake. 520.000 MATIC sono stati scambiati e trasferiti su Avalanche per poi essere convertiti in BTC, così come gli altri movimenti dei fondi effettuati dall'exploiter. Per saperne di più su Skynet Stando alla società di sicurezza blockchain Arkham, i 520.000 MATIC e i 300 BNB – corrispondenti a un totale di 328.000$ – si aggiungono ai 4,5 milioni di dollari di fondi trafugati, che sono stati successivamente trasferiti sulla blockchain di Bitcoin (sotto forma di BTC) il 7 settembre.

I 4,8 milioni di dollari trasferiti rappresentano solo l'1,2% dei 41 milioni di dollari sottratti dagli hacker. Nelle ultime 24 ore, l'hacker ha gradualmente trasferito i fondi sulla blockchain BTC utilizzando una serie di nuovi wallet su Polygon e Avalanche. Finora hanno trasferito 4,5 milioni di dollari agli indirizzi BTC, mentre i restanti 36 milioni di dollari sono ancora detenuti su ETH/BNB/Polygon. Si ritiene che l'hacker abbia ottenuto l'accesso alle chiavi private degli hot wallet Binance Smart Chain ed Ethereum di Stake per perpetrare l'hacking il 4 settembre. Il Federal Bureau of Investigation degli Stati Uniti ritiene che dietro l'exploit ci sia il Lazarus Group della Corea del Nord. Stima dei fondi sottratti a causa di hacking e truffe: superato il miliardo di dollari Con 41 milioni di dollari sottratti a Stake, nel 2023 gli operatori malintenzionati del settore hanno portato il bilancio delle truffe e degli hack a ben oltre 1 miliardo di dollari. A fine agosto CertiK aveva comunicato che la cifra ammontava a 997 milioni di dollari, ma i numerosi attacchi avvenuti nelle ultime due settimane hanno spinto la cifra oltre il miliardo di dollari. Il 6 settembre una crypto whale ha perso 24 milioni di dollari in Ether (ETH) in un attacco di phishing, mentre il 9 l'account X (ex Twitter) di Vitalik Buterin è stato compromesso, con l'hacker che ha totalizzato 691.000$ tramite una truffa di token non fungibili. Questi tre episodi porterebbero la cifra di agosto di CertiK ad almeno 1,04 miliardi di dollari. Nel 2023 gli hack e le crypto truffe hanno raggiunto quasi il miliardo di dollari! ⚔️ThreatSlayer è il tuo compagno di sicurezza che ti tiene al sicuro! Altri recenti episodi includono il prelievo di Pepe PEPE €0,000001, che ha fatto perdere agli investitori 13,2 milioni di dollari, l'exploit da 7,3 milioni di dollari di Exactly Protocol e una vulnerabilità di sicurezza esposta su Balancer, che ha causato danni per 2,1 milioni di dollari. Read the full article

Lazarus Group Launders Stolen Cryptocurrency via Black U Mixer 🕵️‍♂️💸

Could this be the future of laundering? 🤔

The Lazarus Group is back in the headlines, and this time they’re not just chilling in a state-sponsored lair. According to ZachXBT, the notorious hackers have successfully laundered a jaw-dropping $1.5 billion through the infamous Black U mixer! 💀🔥 Like an episode of a bad spy movie, North Korean state actors are stirring the pot and making it rain in the crypto world.

Their tactics have stirred up quite the commotion in DeFi, and let’s be real, we all know that meme coins are about to go through some wild mood swings! 🐶🎢 Analysts have already noticed bizarre trading spikes—because why wouldn’t they? Who wouldn’t rush to pump their favorite meme coin when there’s stolen cash in the pantry?

“Laundering groups and small OTC brokers have easily managed to launder stolen crypto funds from the Lazarus Group.” — ZachXBT, On-Chain Investigator

Key Takeaways:

Over $200 million tracked from 25 hacks since August 2020! 😱

FBI’s all ears! 🎧 They’re singing the crypto surveillance blues!

Time for enhanced AML protocols, folks! 📈📉

The funds are snaking their way through OTC brokers, mixers, and P2P exchanges, and while the FBI is raising the alarm, the immediate effects on major DeFi protocols remain stealthy. But fear not—keyboard warriors are calling for drastic measures to tighten the leash on mixers and exchanges. We all know how that goes—more regulations could mean market chaos! 😬

Want to dive deeper into the crypto underworld? Check out the full story and get your popcorn ready! 🍿 Read the original article on The CCPress! Let’s get the convo rolling in the comments! 💬

#Crypto #Blockchain #LazarusGroup #DeFi #AML #CyberSecurity #MemeCoins #CryptoNews #InvestSmart #Hodl

💻🔒 The Dark Side of Crypto: North Korean Hackers Are Coming for Your Coins! 🕵️‍♂️💰 So, you think your biggest threat in the crypto world is a bad investment? Think again! The infamous Lazarus Group from North Korea has leveled up their game, and now they’re not just riding the crypto wave but trying to sink the ship altogether! 🛳️💥 Imagine this: a fake company, Blocknovas LLC, pops up like a rogue meme on your timeline. They’re not just playing dress-up; they’re hosting job interviews and handing out surprise malware like it’s Halloween! 🎃🍬 Sounds like a bad episode of “Black Mirror,” right? And the impact? A jaw-dropping 20% dip in Bitcoin post-heist—because who doesn’t love a massive wallet hit at the end of the month? 💸🥴 If your reflex was to dive into your security settings after reading this, YOU’RE NOT ALONE! Experts are ringing the alarm bells—literally! 📢 They’re saying we need to turbocharge security measures and knit a safety blanket of international collaboration. Because, let’s face it, nobody wants to be the awkward crypto investor telling their friends, “I lost it all to hackers!” For the full scoop on this high-stakes game of cat and mouse, check out the mind-blowing details here! 🕵️‍♀️🔥 Don’t say I didn’t warn you! Keep your wallets close and your security tighter! 🚀 👉 Share your thoughts below! What would you do if hackers came knocking on your digital door? Let’s chat! #CryptoNews #NorthKoreaHacks #LazarusGroup #BlockchainSecurity #Cryptocurrency #Cybersecurity #InvestSmart #CryptoCommunity

North Korea Funds Nuclear Program with Stolen Cryptocurrency

North Korea Funds Nuclear Program with Stolen Cryptocurrency 💸💣

Hold onto your historical humor; the newest twist in the tale of cryptocurrency comes courtesy of our favorite rogue state! Reports are rolling in that the infamous Lazarus Group, that delightfully audacious bunch linked to North Korea, has been utilizing stolen crypto to finance their nuclear ambitions. Because, you know, who needs borders when you have blocks?!

What to Know:

The uninhibited Lazarus Group is suspected of channeling illicit digital coins to fuel North Korea's nuclear endeavors.

Is your wallet feeling secure? Would love to say yes, but concerns are rising fast!

Governments are sharpening their focus on crypto regulation — hold onto your hats, folks!

North Korea Funds Nuclear Program with Stolen Cryptocurrency

The award for the most daring heist goes to those who prefer to operate in the shadows! Experts claim that the stolen crypto acts as their golden ticket to ignore international sanctions. What a plot twist! The implications? Well, governments are sweating over their crypto security systems like they’re in a sauna!

Lazarus Group and Crypto: Fueling Nuclear Programs

It's like a movie sequel nobody wanted to see; those crafty hackers have allegedly drained digital assets, making the case for stricter regulations stronger than ever. It's not just a bad fantasy anymore; it's reality!

Governments Intensify Scrutiny on Crypto Security

Get ready folks, the regulatory rollercoaster is about to ramp up! Expect tighter control and regulations that will undoubtedly spark lively debates and hilarious memes across social media. Can you imagine the crypto-loving crowd trying to explain regulations to their grandma? Yeah, not going to happen!

"The breach originated from infrastructure tied to the multisig platform Safe{Wallet}, where hackers gained unauthorized access to developer tools and used it to authorize malicious transactions." — Ben Zhou, CEO, Bybit

Echoes of Past Crypto Exploits in North Korea

It's like déjà vu all over again — but with a much more serious twist! Will we ever learn? These incidents reinforce the reality of battling the illicit use of cryptocurrency. Historical data suggests that cyber threats surge where economic sanctions loom. Buckle up; regulations are bound to get funky!

Hop aboard this wild ride of digital currencies — where every token has a *story* and every breach has a *narrative*. If you want to be in the loop and spit some conspiracy theories, check out the full story at bitcoininfonews.com!

What do you think about the future of crypto regulations? Is it time for some serious global standards? Sound off in the comments!

🌐🚀🤑 #CryptoNews #Blockchain #LazarusGroup #NorthKorea #DigitalAssets #CryptoRegulations #InvestSmart

SlowMist reveals a sophisticated APT attack by North Korea’s Lazarus Group targeting the Cryptocurrency industry. blockchain Security firm SlowMist has recently revealed an alarming revelation: The infamous North Korean Lazarus Group is actively targeting the Cryptocurrency industry through an advanced persistent threat (APT) attack. 🚨SlowMist Security Alert🚨Recently, we and our partners discovered a large-scale APT attack directed by the North Korean #LazarusGroup against the Cryptocurrency industry. The attack method is as follows:👇The attacker first disguises his identity, deceives the auditor… pic.twitter.com/XsM7F0bPcV— SlowMist (@SlowMist_Team) September 12, 2023 What are APT Attacks? An advanced persistent threat (APT) is a prolonged, targeted cyberattack where an intruder gains access to a network and remains undetected for an extended period. This kind of attack is generally state-sponsored or carried out by well-funded criminal organizations. What distinguishes APTs from other cyberattacks is the level of sophistication and the attacker’s intent to maintain persistent, unauthorized access to a network. The objective is usually espionage, data theft, or financial gain. Inside the Lazarus APT operation against crypto companies  Initially, they impersonate legitimate Customers, fooling auditors through real-person Authentication to create a customer profile. Then, with that trusted identity, they make genuine deposits to further solidify their façade. Their sophisticated attack doesn’t stop there. Armed with customer status, they engage with company personnel through Mac or Windows Trojans, which are strategically aimed at employees. Once a Trojan infiltrates the system, the attackers Secure permissions that allow them to move laterally within the network. From there, they lie in wait—sometimes for a considerable period—before seizing funds. The Lazarus group is becoming increasingly threatening to the wider crypto industry. Just last week, the group stole $41 million worth of Digital Assets from leading crypto casino Stake.  Lazarus is one of the most infamous North Korean state-backed ransomware groups. North Korea has been actively using stolen Crypto Assets to fund its illicit weapons program. Recently, South Korea has developed a new cyber bill to stop North Korea’s crypto heists. 

Criptomoedas se tornam a principal fonte de financiamento para o regime norte-coreano

Nos últimos anos, a Coreia do Norte se destacou no cenário global por suas audaciosas operações cibernéticas, envolvendo o roubo de criptomoedas. Especialistas alertam que esses ataques têm gerado bilhões de dólares, colocando o país entre as nações com as maiores reservas de tokens digitais. Recentemente, em uma ação que chamou a atenção do mundo, o grupo de hackers conhecido como Lazarus Group conseguiu roubar US$ 1,5 bilhão (aproximadamente R$ 8,8 bilhões) da plataforma de criptomoedas ByBit, que está sediada em Dubai. Este incidente ilustra a crescente habilidade dos cibercriminosos norte-coreanos em atacar e invadir sistemas de segurança complexos.(...)

Leia a noticia completa no link abaixo:

https://www.inspirednews.com.br/criptomoedas-se-tornam-a-principal-fonte-de-financiamento-para-o-regime-nortecoreano

Blind Signing Is an Issue, but Not the Prime Suspect in Bybit's $1.4B Hack

Expert Discusses Why Blind Signing Isn’t the Main Culprit in the Bybit $1.4B Theft Incident. The recent Bybit hack has raised significant concerns within the cryptocurrency community, especially regarding the security of cold wallets and the potential vulnerabilities that blind signing might expose. Blind signing has become a common topic of discussion as experts delve into what led to the $1.4 billion theft. However, a leading expert suggests that while blind signing is indeed a concern, it is not the primary cause behind the breach.

Blind signing happens when a user signs a transaction or message without thoroughly reviewing it, usually due to a lack of visibility into the specifics of what they are approving. In the case of the Bybit breach, experts have stated that while this strategy may have facilitated the attack, the underlying weakness resides elsewhere. The hack was carried out by the notorious Lazarus Group, which is tied to North Korea and exploited holes in the exchange's technology. The Ethereum cold wallet leak resulted in the enormous theft of over 400,000 ETH, worth around $1.4 billion at the time. Also Read:  why-polkadot-uniswap-pi-and-quant-attracted-investor-attention-on-wednesday/ While blind signing may have contributed to the hack, it is critical to recognise that the true issue is the broader systemic vulnerabilities that allowed the attack to occur in the first place. Bybit swiftly responded to the incident by informing its users and initiating corrective actions, such as sponsoring a bounty programme and resuming withdrawals. The recovery process has been lengthy, and experts believe it has provided important insights about how exchanges may strengthen their security processes against such large-scale intrusions. Furthermore, the topic of whether Ethereum's blockchain should be turned back to reverse the harm has sparked passionate debate. While some have proposed this as a possible solution, many experts, including FailSafe's co-founder, have regarded it as impractical. Ethereum's decentralised architecture and strong stance against reversals make such solutions implausible, emphasising the significance of prioritising preventative security measures. The theft has forced exchanges throughout the world to reassess their security policies, particularly those involving cold wallets and the use of blind signature. Experts advocate using more secure user authentication mechanisms and multi-signature wallets to help prevent such attacks in the future. Furthermore, greater transparency regarding transaction approvals may reduce the risks associated with blind signing. Read the full article

North Korean hackers may attack 20 lakh Indians with Covid-19 phishing emails The attacks are part of the Lazarus Group's large-scale campaign targeting more than 50 lakh individuals and businesses across India, Singapore, South Korea, Japan, the UK and the US. #hackers #hackersgroup #phishingemails #lazarusgroup #india #darkweb #northkorea #cyberattack #hacking #darkweb #ransomware #netitharamnews #netitharam #us #southkorea #japan #uk (at Pyongyang, North Korea) https://www.instagram.com/p/CBu940wn6pm/?igshid=g10vkfeprsas

MacOS Malware Affecting Crypto Exchanges

To read more latest news visit: https://coindelite.com

🚨 North Korean Cyberattacks Target Cryptocurrencies, Impact Market 🚨

North Korean Cyberattacks Target Cryptocurrencies, Impact Market

So, it turns out Lazarus Group is not just a name from a bad spy movie! 👀 This infamous cyber gang from North Korea pulled off a jaw-dropping $1.5 billion heist on Bybit, making anyone who's ever lost their keys to their crypto wallet wince with discomfort. 💔 On February 21, 2025, they decided to remind us all that the crypto market is about as stable as your ex's emotions. With a swift stroke, they triggered an 8.2% plunge in Ethereum, proving once again that when it comes to cyberattacks, this crew is more reliable than your morning coffee.

In a world already fraught with twists and turns (looking at you, crypto volatility), every hack sends shockwaves through the market, ensuring late-night Twitter rants and regulatory eye-rolls. We’re talking U.S. Treasury officials scrambling to trace funds like it’s an episode of CSI: Crypto. 💼🔍 With Vitalik Buterin himself crying out for better security measures, you know it's serious business!

“The Bybit hack underscores the critical need for improved security measures in centralized exchanges. The Ethereum community must collaborate to develop more robust solutions to protect user assets.” — Vitalik Buterin, Co-founder, Ethereum

But hey, it’s not all doom and gloom! As analysts pour over GitHub repo updates at a caffeine-fueled pace, there’s buzz about innovative security enhancements like multi-signature and improved cold wallets. 💡 Because who wouldn't want their crypto to be as safe as a secret recipe locked up in Grandma's attic? 🗝️

Have you felt the tremors of this latest hack? What measures do you think should be in place to keep our beloved coins safe from the likes of Lazarus? Let's chat about it! 💬👇 Read the full story and drop your thoughts here!

#Crypto #Ethereum #CyberSecurity #NorthKorea #LazarusGroup #CryptoMarket #Hacking #InvestSmart #Blockchain 🪙💻

North Korean Hackers Targeting Defense Firms with ThreatNeedle Malware | MrHacker.Co #cyber-attack #hackingnews #lazarusgroup #malware #northkorea #hacker #hacking #cybersecurity #hackers #linux #ethicalhacking #programming #security #mrhacker