The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA) and the U.S. Treasury Department have released a joint cybersecurity advisory on an advanced persistent threat (APT) group sponsored by the North Korean state.
The nation-state-sponsored hacking group has targeted organizations involved in blockchain and cryptocurrency. According to the advisory, the hackers have employed social engineering techniques to persuade targeted users to download trojanized cryptocurrency applications. Once downloaded, hackers used the applications to gain access to the victim's network and identify further security vulnerabilities.
Monitored by the cybersecurity industry under the names Lazarus Group, APT38, BlueNoroff, and Stardust Chollima, the state-sponsored group uses tactics similar to Lazarus, such as spearphishing, psychological manipulation and malicious applications.
For more information on the threat, click here.