SlowMist: Investigation of North Korean APT’s Large-Scale Phishing Attack on NFT

[PawGo]

Some of you maybe heard about news which were published first on September; Twitter user PhantomXSec tweeted that the North Korean APT group were responsible for crypto and NFT phishing campaigns targeting dozens of ETH and SOL projects. PhantomXsec provided information on 196 phishing domain names that were linked to North Korean hackers after a thorough analysis.

Now I invite you to read a comprehensive analysis of that event - if you are interested in security and want to know how that kind of attack is created, read more on https://slowmist.medium.com/slowmist-our-in-depth-investigation-of-north-korean-apts-large-scale-phishing-attack-on-nft-users-362117600519

[hd49728]

North Korea has bad history with their attacks, hacks on cryptocurrency project. The hack on Ronnin bridge of Axie Infinity is from North Korea too.

I can not know the accuracy of news but if we connect it with sanctions, money spent for missile research and launches from that nation, a fact is they must have a source of income for expensive cost of missile launches. Cryptocurrency is sensitive to hacks and can be a favorite target for North Korea.

Axie Infinity hack highlights DPRK cryptocurrency heists

[goaldigger]

North Korea has bad history with their attacks, hacks on cryptocurrency project. The hack on Ronnin bridge of Axie Infinity is from North Korea too.

They involved on many cybercrime issues but it's hard to tell if their government is involve on this, on hackers are just using this country to blame for.
What will happen to those hackers even if we already identify their location, I guess none because North Korea seems to be untouchable even if there's already a lot of sanctions against them, their allies probably helping them to survive that long. Anyway, if there's a counter attack against those hackers I hope they will succeed on this so we can finally eliminate those hackers and free cryptomarket from any hack.

[vv181]

North Korea has bad history with their attacks, hacks on cryptocurrency project. The hack on Ronnin bridge of Axie Infinity is from North Korea too.

They involved on many cybercrime issues but it's hard to tell if their government is involve on this, on hackers are just using this country to blame for.

It is widely known that the group is strongly linked to North Korea, but I haven't found any detailed information in regard to the accusations explainers.

Anyway, if there's a counter attack against those hackers I hope they will succeed on this so we can finally eliminate those hackers and free cryptomarket from any hack.

It will be impossible for the cryptocurrency ecosystem to be free from scams and hacks. We should not direct the problem specifically to some group, instead, the only things that one should thrive upon are to educate the masses about basic digital security. Relying on them to stop those scammer groups will hardly give benefit since everyone else can simply do it.

If only people have a basic awareness and be sceptical about what they are doing, I believe the rate of people getting scammed will be significantly reduced.

[Xal0lex]

I have seen too many accusations against North Korea lately. Soon it may become normal and relatively safe to justify some negative events in cryptocurrency by saying that North Korea was involved and throw the blame on them. Very convenient, and most importantly, no one will demand any denials since North Korea is in world isolation

[o48o]

Some of you maybe heard about news which were published first on September; Twitter user PhantomXSec tweeted that the North Korean APT group were responsible for crypto and NFT phishing campaigns targeting dozens of ETH and SOL projects. PhantomXsec provided information on 196 phishing domain names that were linked to North Korean hackers after a thorough analysis.

Now I invite you to read a comprehensive analysis of that event - if you are interested in security and want to know how that kind of attack is created, read more on https://slowmist.medium.com/slowmist-our-in-depth-investigation-of-north-korean-apts-large-scale-phishing-attack-on-nft-users-362117600519

You get some perspective how big of a thing NFTs are when a country starts scamming people with it on the state level. And why do i know it's the government and not some individuals ? Because individuals in there don't have an access to internet.

I honestly think that this is just a start. I know i said that in 2019 about nfts, but i really feel the same feeling of underrated

[Jating]

I haven't read the blog, but this is what we know about the North Korean's as they are very active in the crypto market, using sophisticated phishing attacks to every exchange specially their counter part, the South Korean and they have successful hack them for millions already.

And they have their very well known and documented phishing group which is known to the US as Lazarus group. This group has been attributed to many attacks even before they hone in to the crypto market.

[yazher]

Those people are known to do those kinds of things and they are pretty good at doing it, remember the movie against their Leader? it ended up being canceled because as far as I remember, they hack the movie file before going to Cinema. That's how insane these guys are, they seem to have advanced knowledge when it comes to hacking.

That's why it's really important to learn how to prevent ourselves from becoming victims of this kind of scamming technique and also learn the right thing to do before purchasing any altcoins or NFTs.