The Lazarus Group hacker collective has been behind some of the most high-profile and costly crypto cyber attacks.

North Korean Hackers Behind DeBridge Finance Attack: Co-Founder

Alex Smirnov, co-founder and project lead at DeBridge Finance, took to Twitter on Friday to report that his company was the target of an attempted cyberattack by the infamous North Korean Lazarus Group.

DeBridge provides a cross-chain interoperability and liquidity protocol for transferring data and assets between blockchains.

1/ @deBridgeFinance has been the subject of an attempted cyberattack, apparently by the Lazarus group.

PSA for all teams in Web3, this campaign is likely widespread. pic.twitter.com/P5bxY46O6m

— deAlex (@AlexSmirnov__) August 5, 2022

The attack came via a spoofed email received by several DeBridge team members that contained a PDF file named “New Salary Adjustments,” which appeared to come from Smirnov.

Email spoofing is a form of attack where a malicious email is manipulated to seem as if it originated from a trusted source, in this case, from the firm’s co-founder.

“We have strict internal security policies and continuously work on improving them as well as educating the team about possible attack vectors,” Smirnov wrote.

Even so, Smirnov explained, one person downloaded and opened the file, which triggered an attack on the firm’s internal systems. This prompted an investigation into the attack's origin, how the hackers intended the attack to work, and any potential consequences.

“Fast analysis showed that received code collects A LOT of information about the PC and exports it to [the attacker's command center]: username, OS info, CPU info, network adapters, and running processes,” Smirnov said.

Smirnov compared what DeBridge saw with another Twitter post by another user that showed similar characteristics and pointed to the North Korean hacker group.

15/ According to the Twitter thread https://t.co/5YThfumjZD files with the same names (but different hashes) were noticed and attributed to Lazarus Group (North-Korean hackers).

— deAlex (@AlexSmirnov__) August 5, 2022

Smirnov warned his followers to never open email attachments without verifying the sender's full email address and to have an internal protocol for how their team shares attachments.

18/ TL;DR: Never open email attachments without verifying the sender’s full email address, and have an internal protocol for how your team shares attachments!

Please stay SAFU and share this thread to let everyone know about potential attacks 🔐 🤝

— deAlex (@AlexSmirnov__) August 5, 2022

The Lazarus Group has allegedly been behind several high-profile crypto hacks, including the $622 million Axie Infinity Ronin Ethereum sidechain hack in March and the Harmony Horizon Bridge hack in June.

¨These types of attacks are fairly common,” notes David Schwed, chief operating officer of blockchain security firm Halborn. “They rely on the inquisitive nature of people by naming the files something that would pique their interest, such as salary information.

“We are seeing more and more of these types of attacks specifically targeting blockchain companies given the heightened stakes due to the immutability of blockchain transactions,” Schwed added.

Stay on top of crypto news, get daily updates in your inbox.

NEWS RELATED

Fierce storm kills 3, injures 12 on French island of Corsica

Fierce storm kills 3, injures 12 on French island of Corsica Local authorities on the French island of Corsica say a violent thunderstorm left at least three people dead and a dozen others injured A sign reading “swimming prohibited” sits on a beach with high levels of pollution the morning ...

View more: Fierce storm kills 3, injures 12 on French island of Corsica

Morocco: 13 migrants sent to prison for Spain crossing bid

Morocco: 13 migrants sent to prison for Spain crossing bid A Moroccan court has sentenced 13 migrants to two and a half years in prison over a mass attempt to scale the border fence separating Morocco from the Spanish enclave of Melilla RABAT, Morocco — A Moroccan court has ...

View more: Morocco: 13 migrants sent to prison for Spain crossing bid

iPhone 14 rumored two-tier chip approach could continue with iPhone 15

iPhone 14 performance rumors could apply to future iPhones as well

View more: iPhone 14 rumored two-tier chip approach could continue with iPhone 15

Mumbai: BEST adds two new e-buses including India's first air-conditioned double-decker

BEST has added two new electric buses, including the first air conditioned double-decker bus in India. Twitter/ @ AUThackeray Mumbai: The Brihanmumbai Electric Supply and Transport (BEST) initiative will add two new electric buses to its fleet on Thursday, including the first air-conditioned double-decker bus in the nation, officials announced ...

View more: Mumbai: BEST adds two new e-buses including India's first air-conditioned double-decker

Gyanvapi case: Petitioner's husband gets threat calls from Pakistan

Representational image Varanasi: The husband of one of the five women who are being heard in the Gyanvapi mosque-Shringar Gauri case has allegedly got threat calls from a Pakistan phone number asking him to withdraw the petition. Five women had moved a court here seeking permission to offer regular ...

View more: Gyanvapi case: Petitioner's husband gets threat calls from Pakistan

Explained: The row over accommodating Rohingyas in Delhi, all triggered by a tweet

The Indian government estimate puts the number of Rohingya Muslims in India at more than 40,000. AFP The focus is back on Rohingya refugees in India. On Wednesday, Union minister Hardeep Singh Puri tweeted that all Rohingya migrants from Myanmar living in a camp in Delhi will be shifted ...

View more: Explained: The row over accommodating Rohingyas in Delhi, all triggered by a tweet

Rohingya row: 'Kejriwal govt wrote letters to settle infiltrators in the city,' claims Delhi BJP

Delhi Chief Minister Arvind Kejriwal. ANI New Delhi: Continuing the row over accommodation of Rohingyas in the national capital, Delhi BJP on Thursday trained guns at the Arvind Kejriwal-led government claiming its officials wrote letter after letter requesting that the “infiltrators” be provided EWS flats. The Kejriwal government has ...

View more: Rohingya row: 'Kejriwal govt wrote letters to settle infiltrators in the city,' claims Delhi BJP

Arrested TMC leader Anubrata Mondal claims his daughter cleared school recruitment exam

Arrested TMC leader Anubrata Mondal. News18 Kolkata: Arrested TMC leader Anubrata Mondal on Thursday denied the allegation that his daughter Sukanya Mondal was appointed to a primary school without having cleared Teachers’ Eligibility Test and claimed that she has passed the exam and has a document to prove it. ...

View more: Arrested TMC leader Anubrata Mondal claims his daughter cleared school recruitment exam

FIR against BJP leader Shahnawaz Hussain in four-year-old rape case following Delhi HC order

Over 8,000 more suicide deaths reported in Japan during pandemic, finds study

Man Dies After Being Pulled From Lake Michigan Near Montrose Beach

Is napping ever a good idea? How to nap without damaging your health

Turkey Surprises Markets With Rate Cut Despite Inflation Near 80%

Musk's 'joke' ManU tweet unlikely to land him regulator's red card: Experts

Kagiso Rabada claims five-wicket haul as South Africa bowl England out for 165

She Hulk cast: who stars in new Disney Plus Marvel TV show with actress Tatiana Maslany and Jameela Jamil

M1 motorway closures: junctions shut this weekend, diversion route, reason for closure

Results day 2022: this year’s A Level exam grades explained - how do A and A*s compare to 2021 and 2020?

This Morning’s Rochelle Humes breaks down in tears live on air after emotional interview

Concorde was noisy, cramped and expensive – here's what supersonic travel should look like this time

OTHER NEWS