top of page

North Korea connection to a $625 Million Crypto Attack

Updated: Sep 26, 2022

The US government stated that it has witnessed North Korean cyber attackers targeting a variety of cryptocurrency and blockchain-related businesses, including exchanges, DeFi protocols, and play-to-earn games.

On Monday, several US government agencies issued a combined warning about the threat presented by bitcoin thefts and the techniques used by the North Korean state-sponsored outfit known as the Lazarus Group.

According to the FBI, the Cybersecurity and Infrastructure Security Agency (CISA), and the United States Treasury Department, the organization has also been referred to as APT38, BlueNoroff, and Stardust Chollima.

The warning comes after the Treasury Department connected Lazarus to a $625 million cryptocurrency heist from the Ronin bridge, which is connected to the popular play-to-win game Axie Infinity.

The US government stated that it had observed North Korean cyber actors targeting a variety of cryptocurrency and blockchain businesses, including "cryptocurrency exchanges, decentralized finance (DeFi) protocols, play-to-earn cryptocurrency video games, cryptocurrency trading companies, venture capital funds investing in cryptocurrency, and individual holders of large amounts of cryptocurrency or valuable non-fungible tokens (NFTs)."

The organizations advised businesses and individuals to protect themselves against the group's social engineering attempts to gain access to crypto by patching all systems, prioritizing known exploited vulnerabilities, training users to identify and report phishing attempts, and utilizing multifactor authentication.



bottom of page