|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
North Korea's Lazarus Hackers: LinkedIn's Latest Victims in Targeted Malware Attacks
北韓的 Lazarus 駭客:LinkedIn 針對性惡意軟體攻擊的最新受害者
In a sinister twist, the notorious North Korean hacker group Lazarus has turned its predatory gaze upon LinkedIn, the professional networking platform, in a brazen attempt to steal confidential information and crypto assets from unsuspecting users. This latest campaign underscores the group's relentless pursuit of illicit gains and its growing sophistication in exploiting vulnerabilities.
一個險惡的轉折是,臭名昭著的北韓駭客組織 Lazarus 將掠奪性的目光轉向了專業網路平台 LinkedIn,厚顏無恥地試圖從毫無戒心的用戶那裡竊取機密資訊和加密資產。這項最新活動凸顯了該組織對非法收益的不懈追求以及利用漏洞的日益成熟。
According to blockchain security firm SlowMist, Lazarus hackers masquerade as blockchain developers seeking employment in the cryptocurrency industry on LinkedIn. By posing as legitimate candidates, they establish contact with potential victims and feign interest in their professional credentials.
據區塊鏈安全公司 SlowMist 稱,Lazarus 駭客偽裝成區塊鏈開發人員,在 LinkedIn 上尋求加密貨幣行業的就業機會。透過冒充合法候選人,他們與潛在受害者建立聯繫,並假裝對他們的專業資格感興趣。
Once trust is established, the hackers request access to their victims' repository to run "relevant code" ostensibly for the purpose of assessing their technical abilities. However, these code snippets conceal malicious payloads that surreptitiously steal sensitive information, which is then leveraged to pilfer assets.
一旦建立信任,駭客就會要求訪問受害者的儲存庫以運行“相關程式碼”,表面上是為了評估他們的技術能力。然而,這些程式碼片段隱藏了惡意有效負載,秘密竊取敏感訊息,然後利用這些資訊竊取資產。
LinkedIn, a platform frequented by professionals seeking job opportunities and networking, has unwittingly become a breeding ground for Lazarus hackers. In a similar incident last December, the group posed as Meta recruiters, luring unsuspecting victims into downloading malware-laced coding challenges.
LinkedIn 是尋求工作機會和人際網絡的專業人士經常光顧的平台,卻在不知不覺中成為了 Lazarus 駭客的溫床。在去年 12 月的類似事件中,該組織冒充 Meta 招募人員,引誘毫無戒心的受害者下載帶有惡意軟體的編碼挑戰。
The infamous Lazarus hacking group, active since 2009, has amassed a staggering $3 billion in stolen crypto assets, solidifying its status as one of the most formidable and organized cybercrime syndicates. Its penchant for innovation in targeting and stealing funds continues to outpace law enforcement efforts.
臭名昭著的 Lazarus 駭客組織自 2009 年以來一直活躍,已積累了價值 30 億美元的被盜加密資產,鞏固了其作為最強大、最有組織的網路犯罪集團之一的地位。它在瞄準和竊取資金方面的創新熱衷於繼續超過執法部門的努力。
In August 2023, Lazarus hackers executed a meticulously planned scheme using fake job interviews to siphon $37 million from crypto payment firm CoinPaid. By enticing individuals with lucrative salary offers, the hackers attempted to infiltrate CoinsPaid's infrastructure and gain access to sensitive information.
2023 年 8 月,Lazarus 駭客執行了一項精心策劃的計劃,利用虛假工作面試從加密支付公司 CoinPaid 竊取了 3700 萬美元。透過以豐厚的薪資誘惑個人,駭客試圖滲透 CoinsPaid 的基礎設施並獲取敏感資訊。
North Korea's reliance on Lazarus hackers for funding its military operations is well-documented. Crypto mixing services facilitate the laundering of stolen funds back to the rogue regime, enabling it to evade sanctions and finance its illicit activities.
北韓依賴 Lazarus 駭客為其軍事行動提供資金是有據可查的。加密貨幣混合服務有助於將被盜資金洗回流氓政權,使其能夠逃避制裁並為其非法活動提供資金。
Despite their notoriety, crypto firms have proven resilient against Lazarus's relentless attacks. The decentralized nature of blockchain technology allows crypto platforms to track and block stolen assets once they are identified. In February 2023, Huobi and Binance successfully froze $1.4 million worth of crypto assets linked to North Korea. Similarly, $63 million worth of assets associated with the Harmony Bridge hack were intercepted by crypto exchanges.
儘管聲名狼藉,但事實證明,加密貨幣公司能夠抵禦 Lazarus 的無情攻擊。區塊鏈技術的去中心化性質允許加密平台在識別被盜資產後追蹤並阻止它們。 2023 年 2 月,火幣和幣安成功凍結了價值 140 萬美元的與北韓相關的加密資產。同樣,與 Harmony Bridge 駭客攻擊相關的價值 6,300 萬美元的資產被加密貨幣交易所攔截。
The Lazarus group's audacious exploitation of LinkedIn highlights the evolving landscape of cybercrime and the need for vigilance among professionals. By masquerading as legitimate job seekers, the hackers have breached the trust of unsuspecting victims, demonstrating their willingness to infiltrate even the most secure platforms.
Lazarus 組織對 LinkedIn 的大膽利用凸顯了網路犯罪不斷變化的格局以及專業人士保持警惕的必要性。透過偽裝成合法求職者,駭客破壞了毫無戒心的受害者的信任,表明他們願意滲透甚至最安全的平台。
As the Lazarus group continues to refine its tactics and expand its reach, collaboration between law enforcement agencies, blockchain security firms, and crypto exchanges will be crucial in combating their illicit activities. By sharing intelligence, deploying advanced detection mechanisms, and freezing stolen assets, the international community can disrupt Lazarus's operations and protect the integrity of the digital ecosystem.
隨著拉撒路集團不斷完善其策略並擴大其影響範圍,執法機構、區塊鏈安全公司和加密貨幣交易所之間的合作對於打擊其非法活動至關重要。透過共享情報、部署先進的檢測機制和凍結被盜資產,國際社會可以擾亂 Lazarus 的運作並保護數位生態系統的完整性。
Disclaimer:info@kdj.com
The information provided is not trading advice. kdj.com does not assume any responsibility for any investments made based on the information provided in this article. Cryptocurrencies are highly volatile and it is highly recommended that you invest with caution after thorough research!
If you believe that the content used on this website infringes your copyright, please contact us immediately (info@kdj.com) and we will delete it promptly.
-
- PEPE代幣(PEPE)呈現上升三角形格局,Arthur Hayes的舉動在市場反彈中增強了潛力
- 2024-09-28 06:25:01
- 交易員兼分析師 Bluntz 最近的一項分析顯示,Pepe Coin(一種基於以太坊的 memecoin)呈現出上升三角形模式
-
- 隨著 XRP 帳本區塊鏈的用戶參與度下降,XRP 難以跟上更廣泛的加密貨幣市場反彈的步伐
- 2024-09-28 06:20:02
- XRP 一直難以跟上上週聯準會降息後開始的更廣泛的加密貨幣市場上漲的步伐。
-
- 《紐約時報》「連結」謎題:以下是 9 月 28 日的類別和答案
- 2024-09-28 06:20:02
- Connections 是《紐約時報》的益智遊戲,玩家必須找出不同單字之間的“聯繫”,並將它們排列成四個一組。
-
- 熱門加密貨幣專家 Sherpa 表達了對 RWA 代幣 MANTRA (OM) 的看漲情緒,並分享了對 SOL、FTM 和 SUI 的看法
- 2024-09-28 06:20:02
- Sherpa 預測 RWA 區塊鏈的原生代幣 MANTRA (OM) 可能會比目前價格上漲 16% 左右
-
- Mango Markets 同意在 SEC 和解中銷毀 MNGO 代幣
- 2024-09-28 06:20:02
- Mango DAO、Mango Labs 和 Blockworks 基金會週五同意與美國證券交易委員會達成和解。
-
- 加密貨幣分析師表示,狗狗幣(DOGE)的競爭對手 Dogwifhat(WIF)看起來已準備好飆升
- 2024-09-28 06:20:02
- 一位廣受關注的加密貨幣分析師表示,一種以狗為主題的迷因幣在短短十個月內就實現了六位數的漲幅,正處於另一次突破的邊緣。
-
- 狗狗幣(DOGE)因指標訊號看漲突破而準備價格上漲
- 2024-09-28 06:20:02
- 一位受歡迎的加密貨幣交易員表示,一系列指標表明頂級迷因資產狗狗幣(DOGE)可能會迎來價格上漲。
-
- Shiba Inu (SHIB) 在過去 24 小時內飆升超過 20%,接近臨界阻力位
- 2024-09-28 06:20:02
- 柴犬 [SHIB] 最近經歷了價格大幅上漲,接近突破另一個關鍵阻力位。這種上升趨勢引起了越來越多的關注,使 SHIB 成為最熱門的加密貨幣之一。
-
- SUI 和 BNB 一直成為頭條新聞,但真正的焦點是圍繞 BlockDAG 的預售
- 2024-09-28 06:20:02
- 這份綜合指南將深入探討投資這些加密貨幣的複雜性,揭開炒作,並為您提供潛在提高投資成果所需的策略性見解。