EddieJayonCrypto
9 Sep 24
The FBI has issued a warning about aggressive cyber attacks by North Korean hackers targeting the cryptocurrency industry and related companies. These attacks involve sophisticated social engineering tactics, with hackers conducting extensive research on potential targets and creating customized fic...
The FBI has issued a warning about aggressive cyber attacks by North Korean hackers targeting the cryptocurrency industry and related companies. These attacks involve sophisticated social engineering tactics, with hackers conducting extensive research on potential targets and creating customized fictional scenarios to lure victims. The attackers impersonate individuals on professional networking sites and use realistic imagery to enhance their credibility. Once rapport is established, they deliver malware through seemingly natural requests, such as enabling video call functionalities or downloading applications. The FBI has advised crypto firms to stay vigilant and take necessary measures to address these threats. The United States Federal Bureau of Investigation (FBI) has issued a paper alerting the public of “aggressive” attacks from North Korean hackers against the crypto industry and companies associated with digital asset investment products. According to the report, these attacks consist primarily of sophisticated social engineering tactics that even crypto employees and market participants well-versed in cybersecurity practices could fall victim to. These social engineering attacks are often complex, elaborate, and difficult to detect. The hackers have conducted research on multiple targets active in or connected to the crypto industry. The FBI observed pre-operational preparations suggesting these bad actors may attempt malicious cyber activities against these companies through their employees. Before these groups of North Korean hackers attempt to gain unauthorized access to company networks and devices through employees, they look for their prospective victims on social media, particularly professional networking and employment-related platforms. The hackers incorporate the target’s personal details regarding their background, employment, or business interests to create customized fictional scenarios, such as new employment or corporate investment offers. They ensure these scenarios are uniquely appealing to the targeted persons. Once the bad actors initiate contact with the targets, they strive to maintain rapport to build familiarity, trust, and a sense of legitimacy. Then, they attack when the victims are unsuspecting or in situations that seem natural by delivering malware to their devices or company networks. Some seemingly natural situations include requests to enable video call functionalities supposedly blocked due to a victim's location, requests to download applications or execute codes on company devices or networks, requests to conduct pre-employment tests and debugging exercises, and insistence on using custom software for simple tasks. These attackers also impersonate high-profile individuals, technology experts, and recruiters on professional networking websites. The FBI has instructed crypto firms to remain alert and affected entities to take proper action to fix the issues before they cause significant harm. Additionally, there is a sponsored offer at Binance for a free $600 exclusive welcome offer and a limited offer at BYDFi Exchange for up to $2,888 welcome reward.