The FBI released an alert on February 17, issuing a warning that the Lazarus Group, the state-sponsored group of hackers, was rocketing its AppleJeus malware attacks. The Bureau also revealed that North Korea may target financial institutions and crypto exchanges.
North Korean AppleJeus Warning Released by FBI
North Korea has always been on the list of sponsoring hackers in the past decade.
As a recent example, the Lazarus Group, the state-sponsored group of hackers, also called Zinc by Microsoft and Hidden Cobra by the United States authorities have been heavily involved in cyberattacks.
The prime target of the large-scale cyber-attacks has been South Korea and the United States. Attacks on financial institutions, a DDoS attack on major websites of the U.S. and South Korea, and a very publicized attack in 2014 on Sony Entertainment.
Recorded Future, a crypto intelligence firm, revealed in a 2020 report that the internet is not just for entertainment and other activities, but for the North Korean military and political elite, it is a tool for overall revenue generation.
In addition to that, Recorded Future also revealed that North Korea uses the internet for gaining access to technologies that are banned.
How this Large-Scale Hacking by Lazarus Group Works
As revealed in the report, the method of attack would be the spread of corrupted crypto trading applications that are modified to steal the crypto assets stored in the app.
In addition to this, it was also mentioned that the corrupted apps work on both Windows and Mac operating systems. By appearance, the apps seem to be coming from reputed crypto exchanges and trick users into downloading them.
However, crypto users can protect themselves by taking some measures. They are:
- Using more than one wallet for storing key
- Unique device for crypto assets management
- Using custodial accounts with multi-factor authentication
- Verifying the source of crypto-related apps