Analysis of the blockchain linked to the cryptocurrency heist of the KuCoin exchange uncovered ties to the Lazarus group. Threat actors gained unauthorised access to the company systems and began stealing tokens from the hot wallets. In September 2020, Singapore-based cryptocurrency exchange KuCoin () disclosed a major security breach that has resulted in the theft of hundreds of millions in Bitcoin, Ethereum and other ERC-20 tokens. Moreover, it is far easier for criminals to subsequently launder the funds and evade anti-fraud measures, which is often a key issue for any operation targeting financial organisations. In terms of an actual heist, they represent a comparatively easier target than banks. The following nations’ financial institutions have been targeted by the BeagleBoyz from 2015 through 2020: Argentina, Brazil, Bangladesh, Bosnia and Herzegovina, Bulgaria, Chile, Costa Rica, Ecuador, Ghana, India, Indonesia, Japan, Jordan, Kenya, Kuwait, Malaysia, Malta, Mexico, Mozambique, Nepal, Nicaragua, Nigeria, Pakistan, Panama, Peru, Philippines, Singapore, South Africa, South Korea, Spain, Taiwan, Tanzania, Togo, Turkey, Uganda, Uruguay, Vietnam, and Zambia.Ĭryptocurrency exchanges are a popular target for criminals.
I thought, therefore, I should write what I now know about the Lazarus group and the Reconnaissance General Bureua (RGB) of the Democratic People's Republic of Korea (DPRK). This was one of my first blogs and I was eager to learn more while researching this infamous APT group. In February 2020, I blogged about who the Lazarus group is and what campaigns they are known for (see here). The Lazarus Heist podcast also made me want to revisit what I have learned about North Korean advanced persistent threat (APT) groups. I also highly recommend it for any threat intelligence analysts investigating North Korean cyber activity.
There are so many additional info gems that anyone who has researched North Korea will enjoy.
#Lazarus group apt series
As a security researcher that actively tracks the Lazarus group and any mentions of North Korean cyber activity, I found this podcast series was extremely detailed and well researched.
This thrilling podcast dives into the intracacies of the elaborate Bangladesh Bank heist attempt to steal $1 billion. The BBC World Service has recently produced The Lazarus Heist podcast (available here), researched and presented by Geoff White and Jean H.
0 kommentar(er)
