BlueNoroff, a North Korean group, has discovered a new way to hack into your cryptocurrency wallets. It now has the appearance of banks and Japanese venture capital firms.
Kaspersky Lab announced on December 27 that the North Korean hacking group ‘BlueNoroff’ stole millions of dollars in cryptocurrency after creating over 70 fake domains and impersonating banks and venture capital firms.
According to the investigation, many of the domains resembled Japanese venture capital firms, indicating a keen interest in user and company data in that country.
“After researching the infrastructure that was used, we discovered more than 70 domains used by this group, meaning they were very active until recently. They also created a slew of bogus domains that appear to be venture capital and bank domains.”
Until a few months ago, the BlueNoroff group used Word documents to inject malware. However, they recently improved their techniques, creating a new Windows Batch file that allows them to extend the scope and execution mode of their malware.
(Reporting by Shikha Singh; Editing by Laxmikant Khanvilkar)
You need to login in order to Like
