The US government has recently warned that North Korean state-sponsored hackers have been targeting developers and DevOps teams to get access to cryptocurrency firms.
Indeed the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the U.S. Treasury Department (Treasury) are reporting the recent attacks against cryptocurrency firms using phishing and malware in order to steal funds and conduct fraudulent blockchain transactions.
It is likely that the threats are coming from the Lazarus Group, known as APT38, to steal cryptocurrency and launder funds to support the North Korean regime. The attacks start with spear-phishing messages targetting developers and DevOps teams within cryptocurrency firms, which contain a malware-laced cryptocurrency application.
It is then vital that organizations and staff are vigilant and take the necessary measures to avoid these hacking attacks.