Hackers believed to be associated with the North Korean-based cybercriminal group Lazarus have attempted yet another digital heist by targeting cryptocurrency firm deBridge Finance.

As reported by Bleeping Computer, deBridge operates as a “liquidity transfer protocol that allows decentralized transfer of data and assets” between multiple blockchain platforms.

security, malware, hackers, cyber security, crypto

That fact alone was reason enough for Lazarus to reportedly make the company its latest target. The breach was attempted by sending a phishing email to employees. If opened, it would infect the system with malware, subsequently allowing it to obtain sensitive information from Windows-powered devices in the network.

It would also lay the groundwork for another round of malicious code to be activated at an advanced stage of the cyber attack.

Employees of deBridge Finance received an email last week from the hackers, who posed as the firm’s co-founder, Alex Smirnov. The email contained bogus details about “new salary adjustments” via a HTML file.

That file was masked as a PDF, joined by a Windows shortcut file (.LNK) that tried to lure victims in by posing as a password text file.

Once the doctored PDF file is opened, a cloud storage location is subsequently launched, prompting the user to refer back to the fake text file for a password. From here, the LNK file connects to the Command Prompt with a command that retrieves and loads a payload that is stored remotely.

With the hackers now breaching the system with its malware, it could obtain relevant information about the target system such as the username, operating system, CPU, network adapters, and running processes.

Although the majority of employees who saw the email reported it as suspicious, one individual was unaware of the misleading nature of the contents. Once that employee downloaded and opened the fake document, Smirnov said he was able to examine the attack itself.

North Korean hackers from the Lazarus group are suspected to be behind this particular incident due to the similarity in file names and infrastructure discovered in an earlier attack.

The Lazarus group has certainly been active as of late. It recently tried to trick crypto experts with a similar email campaign by posing as cryptocurrency exchange Coinbase. Elsewhere, the hackers were linked to a huge $617 million crypto heist earlier this year.

TECH NEWS RELATED

Intel XeSS is already disappointing, but there’s still hope

Intel’s hotly anticipated Xe Supersampling (XeSS) tech is finally here, and a couple weeks before Intel’s Arc Alchemist GPUs show up. It’s available now in Death Stranding and Shadow of the Tomb Raider, and more games are sure to come. But right now, it’s really difficult to recommend turning XeSS on. Contents Spotty ...

View more: Intel XeSS is already disappointing, but there’s still hope

Searches for health topics on YouTube now highlights personal stories

Google and TikTok aren’t the only places people look for information on health issues. YouTube is another resource people look to for educating themselves on health-related topics. Now, YouTube has launched a new feature in an attempt to further support those queries in a different way. On Wednesday, the video-sharing ...

View more: Searches for health topics on YouTube now highlights personal stories

This dangerous hacking tool is now on the loose, and the consequences could be huge

A dangerous post-exploitation toolkit, first used for cybersecurity purposes, has now been cracked and leaked to hacking communities. The toolkit is being shared across many different websites, and the potential repercussions could be huge now that it can fall into the hands of various threat actors. Bleeping Computer This could ...

View more: This dangerous hacking tool is now on the loose, and the consequences could be huge

Microsoft Surface October Event: Surface Pro 9 and everything else we expect

Microsoft has officially announced its fall Surface event, currently scheduled for Wednesday, October 12. Like every year, this is the event Microsoft holds to focus squarely on new Surface PCs, and this year we’re rumored to be in for a big launch. Contents Surface Pro 9 Surface Laptop 5 Surface ...

View more: Microsoft Surface October Event: Surface Pro 9 and everything else we expect

Microsoft: Lazarus hackers are weaponizing open-source software

Microsoft says the North Korean-sponsored Lazarus threat group is trojanizing legitimate open-source software and using it to backdoor organizations in many industry sectors, such as technology, defense, and media entertainment. The list of open-source software weaponized by Lazarus state hackers to deploy the BLINDINGCAN (aka ZetaNile) backdoor includes PuTTY, ...

View more: Microsoft: Lazarus hackers are weaponizing open-source software

Exciting Meta Quest 3 details leak in full CAD renders

One of the most prolific leakers of Meta VR information came across what appears to be CAD renders of yet another new VR headset. With Meta’s Quest Pro expected to be announced soon at the upcoming Meta Connect event, the next model will undoubtedly be the Meta Quest 3, landing ...

View more: Exciting Meta Quest 3 details leak in full CAD renders

Coinbase Embodies ‘Predatory Junkyard That Is Crypto’: Enron Short-Seller Jim Chanos

Chanos pointed to Coinbase’s high operating costs and questioned whether the exchange could thrive in an environment of high-interest rates. 

View more: Coinbase Embodies ‘Predatory Junkyard That Is Crypto’: Enron Short-Seller Jim Chanos

DLSS 3 could boost your gaming performance by up to 5x

Nvidia’s upcoming DLSS 3 was just tested in several gaming scenarios, and the results are nothing short of impressive. DLSS 3 boosted the frame rates significantly, sometimes by up to five times, even in CPU-bound games. So far, it really does seem like DLSS 3 is living up to Nvidia’s ...

View more: DLSS 3 could boost your gaming performance by up to 5x

Adobe adds AI magic to Photoshop and Premiere Elements

Crypto.com Targeted in Latest Round of Lazarus Group's Fake Job Scams

Save Big on Refurb Amazon Kindle and Fire Tablets at This 1-Day Woot Sale

How to protect your Mac against ransomware and other cyberthreats

Logitech’s new Mac accessories are customizable, functional, and undeniably pretty

Russia Said to Allow Crypto Mining in Regions With Hydroelectric and Nuclear Power

CFTC Chair Says Crypto Regulations Could Double Bitcoin Price

Insta360 Link review

Upgraded Prilex Point-of-Sale malware bypasses credit card security

Malaysia and China sign MoU on 5G, digital economy and cyber security cooperation

Ethereum Merge Shows Crypto Is 'Getting Its Act Together': Eric Schmidt

Asus RT-AX55 review

OTHER TECH NEWS

Top Car News Car News