Home > Nieuws > Overheid en regulatie >
Foto: Harvepino/Shutterstock
Drie grote Amerikaanse overheidsinstanties hebben gezamenlijk een waarschuwing afgegeven omtrent cyberaanvallen van Noord-Koreaanse hackers in de cryptocurrency wereld. De instanties zijn het Amerikaanse ministerie van Financiën, de Federal Bureau of Investigation (FBI) en het Cybersecurity and Infrastructure Security Agency (CISA).
With the @FBI, and @USTreasury, we released a new cybersecurity advisory on North Korean state-sponsored activity targeting blockchain technology and the cryptocurrency industry. Read the technical guidance and mitigation strategies: https://t.co/Oio478Ouv3 pic.twitter.com/VLa3HUrsPY
— Cybersecurity and Infrastructure Security Agency (@CISAgov) April 18, 2022
Volgens de Amerikaanse instanties richten meerdere hackersgroepen zich op blockchain en crypto bedrijven en worden zij ondersteund door de Noord-Koreaanse overheid. Het gaat dan om de hackersgroepen APT38, BlueNoroff, Stardust Chollima en natuurlijk de beruchte Lazarus Group.
De instanties waarschuwen dat deze hackers toegang krijgen tot computersystemen voor lange periodes zonder op te vallen. Het wordt daarom bestempeld als een zogenaamde advanced persistent threat (APT), oftewel een geavanceerde aanhoudende dreiging.
De Noord-Koreaanse hackers maken gebruik van verschillende technieken, waaronder phishing en social engineering, meldt CISA. Een veelvoorkomende tactiek is het sturen van e-mails naar werknemers met nepvacatures om ze erin te luizen. Zo kunnen de hackers de systemen van bedrijven binnensluipen en malware installeren. Deze malware steelt vervolgens crypto uit de wallets van de bedrijven.
Het bericht meldt dat deze Noord-Koreaanse hackers cryptocurrency exchanges, decentralized finance (DeFi) projecten, durfkapitaalbedrijven, handelsplatformen, non-fungible tokens (NFT) en zelfs play-to-earn computerspellen aanvallen. Het doel is om geld van deze projecten te stelen en vervolgens wit te wassen. De instanties waarschuwen dat investeerders met grote hoeveelheden crypto, oftewel whales, ook doelwit kunnen zijn. CISA meldt dat opbrengsten vervolgens naar de Noord-Koreaanse regering gaan.
CISA waarschuwt dat bedrijven maatregelen moeten nemen om de hackers tegen te gaan. De instantie geeft enkele voorbeelden zoals het gebruik van multi-factor authentication en werknemers les bieden over phishing aanvallen.
In de crypto-wereld zijn we al een langer bewust van deze Noord-Koreaanse hackers. Zo bleek onlangs nog dat maar liefst $600 miljoen gestolen was van Ronin, een platform op Ethereum (ETH) voor het NFT spel Axie Infinity (AXS).
Volgens een recent rapport van Chainalysis hadden Noord-Koreaanse hackers maar liefst $400 miljoen aan crypto gestolen in 2021. Volgens een rapport van de Verenigde Naties uit 2019 was destijds zelfs al $2 miljard aan crypto uit exchanges gestolen. Een recenter VN rapport meldt dat Noord-Korea deze opbrengsten mogelijk gebruikt om zijn kernwapens en raketprogramma’s te ondersteunen.
© 2021 Crypto Insiders B.V.
© 2021 Crypto Insiders B.V.
Login to your account below
Please enter your username or email address to reset your password.
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
Cookie | Looptijd | Omschrijving |
---|---|---|
cookielawinfo-checbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category “Analytics”. |
cookielawinfo-checbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category “Functional”. |
cookielawinfo-checbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category “Other. |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category “Necessary”. |
cookielawinfo-checkbox-non-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category “Non Necessary”. |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category “Performance”. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.