North Korean hackers have taken a new and alarming step by setting up two fake businesses in the U.S. to target cryptocurrency developers with malicious software. The companies, Blocknovas LLC and Softglide LLC, were registered in New Mexico and New York under false identities, according to cybersecurity experts at Silent Push.
According to Reuters, these companies intended to lure job seekers to apply for fake jobs and, in the process, download malware that would compromise their personal details, including wallet details. This campaign is associated with the Lazarus Group, a hacking group that is funded by North Korea’s Reconnaissance General Bureau.
The hackers employed various techniques to penetrate the cryptocurrency industry, which is strategic because it is a major source of income for North Korea’s government, especially for its missile development.
The FBI has acted, and the domain of Blocknovas that was related to these attacks was blocked. However, the breach raises the probability of such scams for developers in the crypto industry who may be vulnerable to such attacks.
Silent Push revealed that some of its victims have already been affected; the malware steals passwords and private keys for crypto wallets. This operation is against the American sanctions that do not allow North Korea to conduct any business within the United States.
This is a wake-up call to developers to be more careful to protect themselves from more complex attacks in cyberspace.
Also Read: KiloEx Hacker Returns Stolen Funds Just Days After Hack
