朝鮮網絡戰爭對加密貨幣行業的攻擊正在成熟

朝鮮注射的網絡攻擊範圍從交流和社會工程嘗試到網絡釣魚攻擊和復雜的供應鏈劫持的範圍

Crypto firm Paradigm has warned that North Korean cyberwarfare attacks on the cryptocurrency industry are "growing in sophistication and in the number of groups involved."

加密公司範式警告說，對加密貨幣行業的朝鮮網絡戰爭攻擊“在成熟和相關的群體數量中都在增長”。

In its report titled "Demystifying the North Korean Threat," Paradigm says that the attacks range from assaults on exchanges and social engineering attempts to phishing attacks and complex supply chain hijacks. In some cases, the attacks take a year to play out, with North Korean operatives biding their time.

Paradigm在其標題為“朝鮮威脅”的報告中說，襲擊範圍包括對交流和社會工程的襲擊量到網絡釣魚攻擊和復雜的供應鏈劫持。在某些情況下，攻擊需要一年的時間才能進行，朝鮮特工籌集時間。

The United Nations estimates that between 2017 and 2023, North Korean hackers have netted the country $3 billion. The total haul has skyrocketed in 2024 and this year, with successful attacks against crypto exchange WazirX and Bybit, which together brought in around $1.7 billion for attackers.

聯合國估計，在2017年至2023年之間，朝鮮黑客已向該國賺了30億美元。全部拖船在2024年和今年猛增，對Crypto Exchange Wazirx和Bybit進行了成功的攻擊，這些襲擊共同為攻擊者帶來了約17億美元的攻擊。

According to the report, at least five main North Korean organizations are involved in cybercrime: Lazarus Group, Spinout, AppleJeus, Dangerous Password, and TraitorTrader. There is also a coalition of North Korean operatives who pose as IT workers, infiltrating tech companies around the world.

根據該報告，至少有五個主要的朝鮮組織參與了網絡犯罪：Lazarus集團，Spinout，Applejeus，危險密碼和WraitorTrader。還有一個由朝鮮特工組成的聯盟，他們以IT工人的身份擺姿勢，在全球滲透科技公司。

Lazarus Group, the most well-known North Korean hacking team, is credited with some of the most high-profile cyberattacks since 2016. The group hacked Sony and the Bank of Bangladesh in 2016 and helped orchestrate the WannaCry 2.0 ransomware attack in 2017.

Lazarus Group是最著名的朝鮮黑客攻擊團隊，以自2016年以來獲得一些最引人注目的網絡攻擊。該集團於2016年入侵了Sony和孟加拉國銀行，並幫助策劃了2017年Wannacry 2.0 Ransomware Attact。

It has also taken aim at the cryptocurrency industry, sometimes to great effect. In 2017, the group hit two crypto exchanges — Youbit and Bithumb. In 2022, Lazarus Group exploited the Ronin Bridge, resulting in hundreds of millions in lost assets.

它還針對加密貨幣行業，有時會產生很大的影響。在2017年，該小組擊中了兩個加密交流 - Youbit和Bithumb。 2022年，拉撒路集團（Lazarus Group）利用了羅寧橋（Ronin Bridge），造成了數億美元的資產損失。

And in 2025, it infamously stole $1.5 billion from Bybit, sending shock throughout the crypto community. The group may be behind some Solana meme coin scams.

在2025年，它臭名昭著地偷走了15億美元的拜比特（Bybit），在整個加密貨幣社區中引起了震驚。該小組可能是一些Solana Meme硬幣騙局的背後。

As Chainalysis and other organizations have explained, Lazarus Group also has predictable money laundering methods after securing a haul. It breaks up the stolen amount into smaller and smaller pieces, sending them to countless other wallets. It then swaps the more illiquid coins for those with higher liquidity and converts much of it to Bitcoin (BTC). After that, the group may sit on the stolen money for a long period of time until the attention from law enforcement dies down.

正如Chainalysis和其他組織所解釋的那樣，Lazarus Group在確保運輸後也具有可預測的洗錢方法。它將被盜的數量分解為越來越小的碎片，將其發送到無數其他錢包。然後，它將流動性較高的人交換更多的流動硬幣，並將其大部分轉換為比特幣（BTC）。此後，該組織可能會坐在被盜的錢上很長一段時間，直到執法部門的關註消失。

The FBI has so far identified three alleged members of the Lazarus Group, accusing them of cybercrimes. In February 2021, the US Justice Department indicted two of those members for involvement in global cybercrimes.

到目前為止，聯邦調查局已經確定了拉撒路集團的三名涉嫌成員，指控他們進行了網絡犯罪。 2021年2月，美國司法部起訴其中兩名成員參與全球網絡犯罪。