The North Korean hacker group Lazarus strikes again. After previously targeting Coinbase in August, it has now executed a malware attack linked to another prominent crypto exchange, Crypto.com.
Lazarus is a well-known hacker organization allegedly backed by the North Korean government. In February, a United Nations report indicated that North Korea had used the funds stolen in cyberattacks to finance its missile program.
According to the cybersecurity company Sentinel One, the hackers have now posted a fake job advertisement for vacancies at Crypto.com. After the interested applicants view the PDF advertisement, their systems are infiltrated by a trojan horse malware that steals the candidates’ data.
While the details concerning the latest attacks are still unknown, it’s safe to say that Lazarus is after the crypto and data on the exchanges.