Using 500 phishing domains, North Korean hackers stole NFTs.

Hackers created fake NFT marketplaces, projects, and a DeFi platform.

North Korean hackers linked to Lazarus Group are reportedly behind a massive phishing campaign targeting nonfungible token (NFT) investors.

SlowMist released a report on Dec. 24 revealing the tactics North Korean APT groups have used to defraud NFT investors, including decoy websites disguised as NFT-related platforms and projects.

Fake websites include one pretending to be a World Cup project and others imitating OpenSea, X2Y2, and Rarible.

SlowMist said decoy websites offered "malicious Mints" to trick victims into thinking they were minting a legitimate NFT by connecting their wallet to the website.

The NFT is fraudulent, and the hacker gains access to the victim's wallet.

Many phishing websites operated under the same Internet Protocol (IP), with 372 NFT phishing websites under one IP and 320 under another.

SlowMist says the phishing campaign has been ongoing for months, with the first domain name registered seven months ago.

Other phishing tactics included saving visitor data to external sites and linking images to target projects.

After obtaining the visitor's data, the hacker would run attack scripts on the victim, gaining access to their access records, authorizations, plug-in wallets, and sensitive data such as their approve record and sigData.

This allows the hacker to access the victim's wallet and steal their digital assets.

SlowMist said the analysis only looked at a small portion of the materials and extracted "some" of the North Korean hackers' phishing characteristics.

SlowMist noted that one phishing address gained 1,055 NFTs and 300 Ether, worth $367,000.

The same North Korean APT group was also behind the Naver phishing campaign Prevailion documented on March 15.

North Korea was involved in cryptocurrency theft in 2022.

North Korea stole $620 million in cryptocurrencies this year, according to South Korea's NIS.

Japan's National Police Agency warned crypto-asset businesses about North Korean hackers in October.

Comments

Proof has successfully raised $50 million in its Series A funding round, which was led by A16z.

Proof has disclosed that it has successfully finished a Series A investment round with a total value of $50 million. Andreessen Horowitz served as the lead investor for this round. Andreessen Horowitz was the driving force behind Proof's successful completion of a funding round that totaled $50 million (a16z). During the process of raising money, participation was also obtained from Seven Seven Six, True Ventures, Collab+Currency, Flamingo DAO, SV Angel, and VaynerFund. Prior to that, in the month of April, Seven Seven Six had already made an investment in the amount of $10 million in PROOF. In addition, the company shared information concerning the technology that is used to power its web3 platform, as well as ambitions for the expansion of the overall ecosystem. The company is now working on establishing a platform that will help NFT collectors collaborate with communities and unlock utilities. This platform will also help the company unlock new opportunities. Kevin Rose, Co-Foun...

IC Markets has appointed Andreas Skianis as global head of partners

Founded in 2007, IC Market is regarded as a "CLASSIC" foreign currency brokerage of the current period, with headquarters in Sydney, Australia. IC is a well-known and HIGHLY regulated (by ASIC) brokerage dedicated to providing market traders with the BEST trading experience possible. The brokerage firm is run by International Capital Markets PTY, and the headquarters are on level 6 of 309 Kent Street in Sydney. When compared to other other brokers in Australia, the IC market is widely regarded for offering the most leverage as well as the lowest spreads and costs. In addition, IC offers Futures, Commodities, and Indices. The IC Markets has strengthened its executive team with the recent appointment of Andreas Skianis as Global Head of Partners. Skianis began his new position with the organization this month and is headquartered in Limassol, Cyprus, according to his LinkedIn profile. "I'm excited to announce that I'll be starting a new position as Head of Pa...

What Does the Inverse Head and Shoulders Pattern Mean in Trading?

An inverse head and shoulders pattern, also called a "head and shoulders bottom," looks like a regular head and shoulders pattern, but it is the other way around. The head and shoulders top is used to predict reversals in downtrends. The price action of a security fits this pattern when it falls to a trough and then rises, falls below the previous trough and then rises, and then falls but doesn't reach the second trough. As soon as the last dip forms, the price goes up until it hits resistance at the top of the previous dips. What does "Head and Shoulders in the Wrong Direction" mean? When the price goes above the resistance of the neckline, investors usually start to buy. The shoulders are the first and third dips, and the head is the second peak. When the price goes above the resistance level, also called the "neckline," this is seen as a sign that the price will go up quickly. A lot of traders are waiting for a big jump in volume to confirm the brea...

Search This Blog