North Korea Launches Cyberattack On The DeFi Protocol
North Korea – An alleged cyberattack against deBridge, a cross-chain interoperability and liquidity transfer protocol, was purportedly carried out by the Lazarus Group, a hacker group associated with the North Korean government.
The crew was tricked into opening a PDF file called “New Salary Adjustment” by malicious actors who made it appear as though it was received from a co-founder of the project’s email account.
The suspicious file was ultimately downloaded and opened by one of the employees.
The deBridge team ended up investigating the suspicious email. It found out that opening the PDF file would require entering a password. The downloaded archive also contained an LNK file, which is masked as a password file. Once opened, it executes a cmd.exe command that infects the entire system.
North Korea is likely behind the attempted attack
Files with the same names were attributed to Lazarus Group in the past, which is why the deBridge team believes that North Korea is likely behind the attempted attack.
The $100 million Harmony hack, which took place in November, were also attributed to Lazarus Group. North Korean hackers were also behind the $625 million Ronin hack.
DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.
Join CoinCu Telegram to keep track of news: https://t.me/coincunews