拉撒路集团利用龙卷风现金为洗衣

拉撒路集团（Lazarus Group）是与朝鲜相关的黑客集体，通过利用加密货币来继续其非法活动。

A transaction of 400 ETH, roughly 750,000 dollars, was spotted heading towards Tornado Cash from an address identified by security firm CertiK as belonging to Lazarus Group, a North Korean hacking collective.

从安全公司Certik确定的地址属于Lazarus Group，这是北朝鲜黑客集体的集体，从一个地址迈出了400张ETH，大约75万美元的交易，约有75万美元。

Known for exploiting crypto and pivoting towards software developers, the group is no stranger to illicit activities in the crypto sphere.

该小组因利用加密货币和向软件开发人员的旋转而闻名，对加密球体中的非法活动并不陌生。

Earlier this year, the group was seen attempting to steal 1.4 billion dollars from Bybit and later 29 million dollars from Phemex. However, both attempts were thwarted by the swift response of the exchange’s security teams.

今年早些时候，该组织试图从拜比特（Bybit）窃取14亿美元，后来从Phemex窃取了2900万美元。但是，这两种尝试都因交易所安全团队的迅速反应而挫败了。

The fact that a transaction of this size is still being detected several months later highlights the difficulties faced by authorities in tracing and recovering stolen crypto funds.

几个月后仍在发现这种规模的交易的事实突显了当局在追踪和恢复被盗的加密基金方面所面临的困难。

In five days, nearly 2.91 billion dollars is estimated to have flowed through this decentralized protocol, rendering any recovery attempt extremely complicated.

在五天内，估计将近29.1亿美元通过该分散的协议流动，这使任何恢复尝试变得极为复杂。

For several years, Lazarus has relied on various methods to evade authorities, such as exploiting mixers like Tornado Cash. These services, although legitimate for preserving the confidentiality of crypto transactions, are often diverted for criminal purposes.

几年来，拉撒路一直依靠各种方法来逃避当局，例如利用龙卷风等搅拌机。这些服务虽然合理地保留了加密交易的机密性，但通常是出于犯罪目的而转移的。

Earlier this year, the U.S. Treasury sanctioned Tornado Cash for its role in laundering at least 7 billion dollars in digital assets, a move that signaled increased efforts to crack down on illicit financial activities within the crypto space.

今年早些时候，美国财政部批准了龙卷风现金，因为其在洗钱至少70亿美元的数字资产中的作用，这一举动表明，越来越多的努力打击了加密货币领域内的非法财务活动。

However, despite these efforts, hackers continue to find new ways to exploit vulnerabilities and steal crypto.

但是，尽管做出了这些努力，黑客仍在寻找新的方法来利用漏洞并窃取加密货币。

Recently, six new malwares created by Lazarus have been spotted on the Node Package Manager (NPM) platform, an essential service for managing JavaScript libraries used by web3 developers.

最近，在Node软件包管理器（NPM）平台上发现了六个由Lazarus创建的新Malwares，这是管理Web3开发人员使用的JavaScript库的重要服务。

Among them is the malicious software BeaverTail, which mimics popular libraries by slightly altering their names, a technique known as typosquatting. This allows hackers to deceive developers into installing malware instead of the intended library.

其中包括恶意软件Beavertail，它通过稍微更改其名称来模仿流行的库，这是一种称为Typosquatting的技术。这使黑客可以欺骗开发人员安装恶意软件，而不是预期的库。

These malwares grant hackers access to sensitive data such as credentials stored in Chrome, Brave, and Firefox browsers, as well as Solana and Exodus wallets.

这些Malwares Grand Hackers访问敏感数据，例如存储在Chrome，Brave和Firefox浏览器中的凭证，以及Solana和Exodus Wallets。

Moreover, several crypto entrepreneurs have been targeted by fake Zoom invitations, where hackers pose as crypto investors and trick their victims into downloading infected files.

此外，虚假的Zoom邀请函的目标是几位加密企业家，黑客成为加密投资者，并欺骗受害者下载受感染的文件。

According to Chainalysis, North Korean hackers have stolen 1.3 billion dollars in 2024, more than double that of the previous year. This increase highlights a persistent threat to the security of crypto assets.

根据链分析，朝鲜黑客在2024年偷走了13亿美元，是上一年的两倍以上。这增加了对加密资产安全的持续威胁。

The use of Tornado Cash and THORChain thus underscores the difficulties faced by authorities in tracing and blocking these funds. In the face of these repeated attacks, crypto developers and companies must strengthen their security measures to limit their exposure to cybercriminals.

因此，使用龙卷风现金和胸部强调了当局在追踪和阻止这些资金方面面临的困难。面对这些反复攻击，加密开发商和公司必须加强其安全措施，以限制其对网络犯罪分子的影响。