Bitcoin is under attack from North Korea! We are talking here more specifically about the group of hackers named “Lazarus”, who would be in cahoots with the Pyongyang regime. The wallets of Bitcoin owners are their new “easy target”.
This group of hackers is reported to have a virtual arsenal to steal Bitcoin wallets on any PC, but that’s not all.
The North Korean hackers not only want your Bitcoin but also your bank details.
If the name Lazarus does not tell you anything, it is this group of hackers who had, in 2014, compromised the servers of Sony Pictures. In addition, several bank attacks have been attributed to them since, as in 2016 in Bangladesh where millions of dollars were stolen virtually. In short, Lazarus is a very skilled and dangerous group.
Experts believe that this group of hackers is interested in Bitcoin. They are even suspected of several recent attempts in connection with cryptocurrency. They are strongly suspected of having conducted the “hacking” of the Seoul-based Youbit marketplace, recently emptied of 17% of its Bitcoin stock.
This bitcoin robbery is the second of its kind this year. The company Yapizon had 3816 of its Bitcoin stolen in April 2017. This represents no less than 50 million euros.
According to experts, Lazarus does not intend to stop there. It currently has in its arsenal three powerful malware: PowerRatankba, Ghost RAT and RatankbaPO. The goal is simple, to attack individuals not protected enough. By detecting which applications are installed on your computer, hackers decide whether or not to continue the attack. If they decide, they will take remote access to steal what interests them.
Importantly, even if it only seems to concern North Korea for the moment, one of the malware is made especially for stealing credit card numbers. In addition, the hackers are using all means available and imaginable to spread their malware to the maximum: false Skype update, infected PDF documents, websites with malicious code, etc.