Thursday, July 10, 2025
  • Login
Euro Times
No Result
View All Result
  • Home
  • Finance
  • Business
  • World
  • Politics
  • Markets
  • Stock Market
  • Cryptocurrency
  • Investing
  • Health
  • Technology
  • Home
  • Finance
  • Business
  • World
  • Politics
  • Markets
  • Stock Market
  • Cryptocurrency
  • Investing
  • Health
  • Technology
Euro Times
No Result
View All Result

North Korean Lazarus Group Linked to New Cryptocurrency Hacking Scheme – Security Bitcoin News

by Sergio Goschenko
December 5, 2022
in Cryptocurrency
Reading Time: 4 mins read
A A
0
Home Cryptocurrency
Share on FacebookShare on Twitter


The Lazarus group, a North Korean hacking organization previously linked to criminal activity, has been connected to a new attack scheme to breach systems and steal cryptocurrency from third parties. The campaign, which uses a modified version of an already existing malware product called Applejeus, uses a crypto site and even documents to gain access to systems.

Modified Lazarus Malware Used Crypto Site as Facade

Volexity, a Washington D.C.-based cybersecurity firm, has linked Lazarus, a North Korean hacking group already sanctioned by the U.S. government, with a threat involving the use of a crypto site to infect systems in order to steal info and cryptocurrency from third parties.

A blog post issued on Dec. 1 revealed that in June, Lazarus registered a domain called “bloxholder.com,” which would be later established as a business offering services of automatic cryptocurrency trading. Using this site as a facade, Lazarus prompted users to download an application that served as a payload to deliver the Applejeus malware, directed to steal private keys and other data from the users’ systems.

The same strategy has been used by Lazarus before. However, this new scheme uses a technique that allows the application to “confuse and slow down” malware detection tasks.

Document Macros

Volexity also found that the technique to deliver this malware to final users changed in October. The method morphed to use Office documents, specifically a spreadsheet containing macros, a sort of program embedded in the documents designed to install the Applejeus malware in the computer.

The document, identified with the name “OKX Binance & Huobi VIP fee comparision.xls,” displays the benefits that each one of the VIP programs of these exchanges supposedly offers at their different levels. To mitigate this kind of attack, it is recommended to block the execution of macros in documents, and also scrutinize and monitor the creation of new tasks in the OS to be aware of new unidentified tasks running in the background. However, Veloxity did not inform on the level of reach that this campaign has attained.

Lazarus was formally indicted by the U.S. Department of Justice (DOJ) in Feb. 2021, involving an operative of the group linked to a North Korean intelligence organization, the Reconnaissance General Bureau (RGB). Before that, in March 2020, the DOJ indicted two Chinese nationals for aiding in the laundering of more than $100 million in cryptocurrency linked to Lazarus’ exploits.

Tags in this story
applejeus, bloxholder, Crypto, data, department of justice, indicment, indictment, Lazarus, Malware, payload, Theft, volexity

What do you think about Lazarus’ latest cryptocurrency malware campaign? Tell us in the comments section below.

Sergio Goschenko

Sergio is a cryptocurrency journalist based in Venezuela. He describes himself as late to the game, entering the cryptosphere when the price rise happened during December 2017. Having a computer engineering background, living in Venezuela, and being impacted by the cryptocurrency boom at a social level, he offers a different point of view about crypto success and how it helps the unbanked and underserved.

Image Credits: Shutterstock, Pixabay, Wiki Commons

Disclaimer: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article.

More Popular News

In Case You Missed It





Source link

Tags: BitcoincryptocurrencyGroupHackingKoreanLazarusLinkedNewsNorthSchemesecurity
Previous Post

Credit Suisse Rises as Saudi Crown Prince Weighs Investment

Next Post

Horizon Therapeutics downticks as one of three bidders drops out By Investing.com

Related Posts

Breakout Above ,800 Could Ignite Altseason

Breakout Above $2,800 Could Ignite Altseason

by Sebastian Villafuerte
July 10, 2025
0

Ethereum surged over 5% yesterday, pushing previous the important thing $2,700 stage and signaling renewed energy throughout the altcoin market....

Trump Administration Imposes 50% Tariff on Brazilian Imports

Trump Administration Imposes 50% Tariff on Brazilian Imports

by Sergio Goschenko
July 10, 2025
0

Trump famous that the brand new 50% tariff on Brazilian imports was justified as a result of unfair remedy of...

NFT Sales Hit .82B in H1 2025 as Market Cools

NFT Sales Hit $2.82B in H1 2025 as Market Cools

by Cointelegraph By Ezra Reguerra
July 10, 2025
0

World non-fungible token gross sales volumes reached $2.82 billion within the first half of 2025, exhibiting a small lower of...

Tether Moves 80 Tons Of Gold Offshore

Tether Moves 80 Tons Of Gold Offshore

by Christian Encila
July 10, 2025
0

Trusted Editorial content material, reviewed by main trade consultants and seasoned editors. Advert Disclosure Tether, the corporate behind the USDT...

VC Firm Ego Death Capital Closes 0M Fund to Back Bitcoin-Based Projects

VC Firm Ego Death Capital Closes $100M Fund to Back Bitcoin-Based Projects

by Sneha Agrawal
July 10, 2025
0

Ego Demise:- In an enormous enhance for the growing Bitcoin DeFi, the VC agency Ego demise capital has raised $100M...

Ben ‘BitBoy’ Armstrong faces six charges for harassing phone calls, released after arrest

Ben ‘BitBoy’ Armstrong faces six charges for harassing phone calls, released after arrest

by Vivian Nguyen
July 10, 2025
0

Key Takeaways Ben 'BitBoy' Armstrong has been booked on six counts of harassing telephone calls in Cherokee County, Georgia. The...

Next Post
Horizon Therapeutics downticks as one of three bidders drops out By Investing.com

Horizon Therapeutics downticks as one of three bidders drops out By Investing.com

U.S.-listed Chinese stocks give up earlier gains as investor digest reopening shift

U.S.-listed Chinese stocks give up earlier gains as investor digest reopening shift

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Why Is Every Natural Disaster Being Politicized?

Why Is Every Natural Disaster Being Politicized?

July 10, 2025
Court in Moldova Extends House Arrest of Gagauzia Head Gutsul for 30 Days

Court in Moldova Extends House Arrest of Gagauzia Head Gutsul for 30 Days

July 10, 2025
Pentagon to become largest shareholder in rare earth magnet maker MP Materials

Pentagon to become largest shareholder in rare earth magnet maker MP Materials

July 10, 2025
Saratoga Investment Q1: ROE Beating The BDC Industry Average (NYSE:SAR)

Saratoga Investment Q1: ROE Beating The BDC Industry Average (NYSE:SAR)

July 10, 2025
The Emptiness of AI Ethics

The Emptiness of AI Ethics

July 10, 2025
Sony Xperia 1 VII units in more regions are dying, but there’s a temporary solution

Sony Xperia 1 VII units in more regions are dying, but there’s a temporary solution

July 10, 2025
Euro Times

Get the latest news and follow the coverage of Business & Financial News, Stock Market Updates, Analysis, and more from the trusted sources.

CATEGORIES

  • Business
  • Cryptocurrency
  • Finance
  • Health
  • Investing
  • Markets
  • Politics
  • Stock Market
  • Technology
  • Uncategorized
  • World

LATEST UPDATES

Why Is Every Natural Disaster Being Politicized?

Court in Moldova Extends House Arrest of Gagauzia Head Gutsul for 30 Days

  • Disclaimer
  • Privacy Policy
  • DMCA
  • Cookie Privacy Policy
  • Terms and Conditions
  • Contact us

Copyright © 2022 - Euro Times.
Euro Times is not responsible for the content of external sites.

No Result
View All Result
  • Home
  • Finance
  • Business
  • World
  • Politics
  • Markets
  • Stock Market
  • Cryptocurrency
  • Investing
  • Health
  • Technology

Copyright © 2022 - Euro Times.
Euro Times is not responsible for the content of external sites.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In