The Lazarus Group hacker collective has been behind some of the most high-profile and costly crypto cyber attacks.

crypto cyber attacks, debridge finance, debridge, lazarus group, cyber attacks, hackers

Alex Smirnov, co-founder and project lead at DeBridge Finance, took to Twitter on Friday to report that his company was the target of an attempted cyberattack by the infamous North Korean Lazarus Group.

DeBridge provides a cross-chain interoperability and liquidity protocol for transferring data and assets between blockchains.

1/ @deBridgeFinance has been the subject of an attempted cyberattack, apparently by the Lazarus group.

PSA for all teams in Web3, this campaign is likely widespread. pic.twitter.com/P5bxY46O6m

— deAlex (@AlexSmirnov__) August 5, 2022

The attack came via a spoofed email received by several DeBridge team members that contained a PDF file named “New Salary Adjustments,” which appeared to come from Smirnov.

Email spoofing is a form of attack where a malicious email is manipulated to seem as if it originated from a trusted source, in this case, from the firm’s co-founder.

“We have strict internal security policies and continuously work on improving them as well as educating the team about possible attack vectors,” Smirnov wrote.

Even so, Smirnov explained, one person downloaded and opened the file, which triggered an attack on the firm’s internal systems. This prompted an investigation into the attack's origin, how the hackers intended the attack to work, and any potential consequences.

“Fast analysis showed that received code collects A LOT of information about the PC and exports it to [the attacker's command center]: username, OS info, CPU info, network adapters, and running processes,” Smirnov said.

Smirnov compared what DeBridge saw with another Twitter post by another user that showed similar characteristics and pointed to the North Korean hacker group.

15/ According to the Twitter thread https://t.co/5YThfumjZD files with the same names (but different hashes) were noticed and attributed to Lazarus Group (North-Korean hackers).

— deAlex (@AlexSmirnov__) August 5, 2022

Smirnov warned his followers to never open email attachments without verifying the sender's full email address and to have an internal protocol for how their team shares attachments.

18/ TL;DR: Never open email attachments without verifying the sender’s full email address, and have an internal protocol for how your team shares attachments!

Please stay SAFU and share this thread to let everyone know about potential attacks 🔐 🤝

— deAlex (@AlexSmirnov__) August 5, 2022

The Lazarus Group has allegedly been behind several high-profile crypto hacks, including the $622 million Axie Infinity Ronin Ethereum sidechain hack in March and the Harmony Horizon Bridge hack in June.

¨These types of attacks are fairly common,” notes David Schwed, chief operating officer of blockchain security firm Halborn. “They rely on the inquisitive nature of people by naming the files something that would pique their interest, such as salary information.

“We are seeing more and more of these types of attacks specifically targeting blockchain companies given the heightened stakes due to the immutability of blockchain transactions,” Schwed added.

Stay on top of crypto news, get daily updates in your inbox.

TECH NEWS RELATED

How to buy a Pokémon Go Fest: Finale ticket

Image via Niantic The last Pokémon Go Fest event for 2022 has arrived, and it might easily be the largest one held this year. The Pokémon Go Fest: Finale will feature all four of the Ultra Beasts, multiple rotating habitats, and several exclusive Pokémon for you to catch in ...

View more: How to buy a Pokémon Go Fest: Finale ticket

All increased spawns for Pokémon Go Fest: Finale

Image via Niantic The end of Pokémon Go’s Season of Go is nearly here. The big event to close out the season before we make our way to September will be the Pokémon Go Fest: Finale, a ticketed event you can join from anywhere in the world. During the ...

View more: All increased spawns for Pokémon Go Fest: Finale

'It Doesn’t Change Anything' Says Tornado Cash After Code Disappears From GitHub

The source code for crypto privacy mixer Tornado Cash has been removed from Github, prompting outcry from privacy and free speech advocates.

View more: 'It Doesn’t Change Anything' Says Tornado Cash After Code Disappears From GitHub

Deals: Apple's 24-Inch iMac (8-Core, 256GB) Drops to Record Low Price of $1,349.99 on Amazon

Apple’s 24-inch iMac (8-Core GPU, 256GB) has dropped to $1,349.99 on Amazon today, down from $1,499.00. This sale is available in three colors, which are all in stock and ready to ship: Yellow, Orange, and Purple. Note: MacRumors is an affiliate partner with some of these vendors. When you click ...

View more: Deals: Apple's 24-Inch iMac (8-Core, 256GB) Drops to Record Low Price of $1,349.99 on Amazon

What is Youniverze Finance (YUNI) and is it Valuable?

Disclaimer: The text below is an advertorial article that is not part of Cryptonews.com editorial content. Cryptocurrency is growing even as we see the markets face hurdles they are also faced with a rising number of nodes making scalability a problem for them. This can be seen in some of the biggest ...

View more: What is Youniverze Finance (YUNI) and is it Valuable?

Does Celphish Finance (CELP) Offer NFT Support Like Ethereum (ETH) And The Sandbox (SAND)?

Disclaimer: The text below is an advertorial article that is not part of Cryptonews.com editorial content. Cryptocurrency markets have become more accessible and valuable to the rest of the world as new coins emerge to improve crypto activities. Following the wide acceptance of cryptocurrency in our global world, people’s activities towards pushing ...

View more: Does Celphish Finance (CELP) Offer NFT Support Like Ethereum (ETH) And The Sandbox (SAND)?

Select SanDisk SD Cards are up to 36 percent off today

SanDisk has slashed its pricing on SD Cards today through Amazon Canada. Some of the deals will save you upwards of 36 percent. If you’re looking for storage options, check out the links below. SanDisk 128GB Extreme PRO SDXC UHS-I Card for $37.99 (save 32%) SanDisk 64GB Extreme PRO ...

View more: Select SanDisk SD Cards are up to 36 percent off today

Roblox Project Baki 2 Trello Link – Where to find the Project Baki Trello

Image via Roblox Based on the anime and manga series Baki by Keisuke Itagaki, the goal of this Roblox experience is to grow stronger and become the strongest fighter out there. To do that, you will have to fight stronger and stronger fighters while training and improving your powers. ...

View more: Roblox Project Baki 2 Trello Link – Where to find the Project Baki Trello

Telstra Report Unveils Ethereum Devs Remain Strong During Bear Market

New NFT Privacy Proposal Gets Vitalik Buterin’s Attention

How to Change Name in Fall Guys

The Bear Market Correction Could Be Over, According To ARK. Reasoning Inside

Chery smashes it out of the park in South Africa

Dogecoin Unseated From No. 10 Spot In Rankings – Can DOGE Stay Relevant?

Apple Pay is now in Malaysia, revealing merchants that support the payment option

How to Hide Your WhatsApp 'Last Seen' Status From Specific Contacts

How to Change or Remove User Account Image in Windows 11

EVGA slashes RTX 3090 Ti price by $1000 to just $1149

Bitcoin and Ethereum Correct Gains, Altcoins Turn Red Too

How to Join Friends in Ready or Not

OTHER TECH NEWS

Top Car News Car News