North Korean hackers, known as the Lazarus Group, recently used a fake LinkedIn profile to carry out a cyber attack. SlowMistβs information security director, 23pds, uncovered this scheme where the hackers created a fake profile of an employee from the investment company Fenbushi Capital.
The expert found that the hackers used this fake profile to target software developers in the decentralized finance (defi) sector by sending them phishing links. The fake profile was traced back to the Lazarus Group through IP addresses and their typical attack methods.
According to a U.N. Security Council report, North Korean hackers often employ phishing and social engineering techniques to compromise private keys of companies. The Lazarus Group has been involved in various cyber attacks, including one on the gaming platform Munchables where they stole 17,500 Ethereum (ETH).
Crypto expert ZachXBT revealed that between 2020 and 2023, the Lazarus Group laundered $200 million through over 25 crypto-to-fiat hacks. While some of the stolen money was frozen, a significant amount was still unaccounted for.
With their history of cyber attacks and money laundering, the Lazarus Group poses a significant threat to the cryptocurrency industry. Stay vigilant and ensure your online security measures are robust to protect yourself from such attacks.