North Korean hackers, under the BlueNoroff subgroup of the Lazarus Group, have escalated their cyberattacks, shifting from social media manipulation to targeted phishing emails in their 'Hidden Risk' campaign.
These emails, disguised as crypto news or DeFi updates, lead to malware-laden links that bypass security features like macOS’s Gatekeeper, allowing hackers to steal sensitive data.
As the cryptocurrency sector grows, North Korean hackers are increasingly focusing on DeFi and ETF firms, using phishing and social engineering to target employees.
The FBI has issued warnings, urging firms to strengthen security and cross-check wallet addresses.
The Lazarus Group has also exploited privacy protocols like RailGun for crypto money laundering, prompting U.S. sanctions on services like Tornado Cash.
Experts advise cryptocurrency firms, particularly those on macOS, to enhance security with regular malware scans and careful scrutiny of email attachments to defend against these evolving threats.
The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) has imposed sanctions on several individuals and entities tied to a Russian money laundering operation that utilized Tether (USDT) and other cryptocurrencies for illicit transactions.
A prominent cryptocurrency platform has suffered a major cyberattack, leading to a $50 million theft on October 16, 2024.
A Russian national linked to the now-defunct WEX cryptocurrency exchange has been arrested in Poland on charges related to fraud and money laundering.
Crypto sleuth Coffeezilla has pushed back against the spread of misinformation surrounding the recent memecoin launch by influencer Hailey Welch, also known as “Hawk Tuah.”