Lazarus Group stole $37 million from CoinsPaid through social engineering attacks

2023-08-08 09:30:06

Collection

ChainCatcher news, the hacker group Lazarus Group stole $37 million from the Estonia-based crypto payment provider CoinsPaid through a 6-month social engineering attack. CoinsPaid stated that in March of this year, CoinsPaid's engineers received a list of questions regarding technical infrastructure, which came from a so-called "Ukrainian crypto processing startup." Between June and July, the engineers received fake job offers.

CoinsPaid reported that on July 22, an employee thought they were interviewing for a lucrative job and downloaded malware as part of a so-called technical test. The hacker group had spent 6 months learning about CoinsPaid, including team members, the company's structure, and all possible details. When the employee downloaded the malicious code, the hackers were able to access CoinsPaid's systems and successfully forged authorization requests to extract funds from CoinsPaid's hot wallet.

(Source Link)

Related tags

Lazarus Group CoinsPaid

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.

2024-10-07 08:15

Tether: Since its establishment, it has collaborated with 180 institutions to freeze approximately 1,850 illicit activity wallets

2024-09-18 20:28

ZachXBT Monitoring: Four stablecoin issuers have blacklisted two addresses including those of the Lazarus Group.

2024-09-14 16:51

Cyvers: North Korean hacker group Lazarus Group may target Bitcoin ETFs as a new attack objective.

2024-09-11 21:13

Related tags

Lazarus Group CoinsPaid

Mention the project

CoinsPaid Cryptographic Payment Gateway