The government said it had observed North Korean cyber actors targeting a wide range of crypto and blockchain companies, including exchanges, DeFi protocols and play-to-earn games.
Several U.S. government organizations jointly warned on Monday of the threat posed by cryptocurrency thefts and tactics used by the North Korean state-sponsored group known as Lazarus Group.
The FBI, the Cybersecurity and Infrastructure Security Agency (CISA) and the U.S. Treasury Department said other names for the group include APT38, BlueNoroff and Stardust Chollima.
The warning comes after the Treasury Department tied Lazarus to a $625 million theft of cryptocurrency from the Ronin bridge linked to popular play-to-earn game Axie Infinity.
The U.S. government said it had observed North Korean cyber actors targeting a wide range of crypto and blockchain companies, including “cryptocurrency exchanges, decentralized finance (DeFi) protocols, play-to-earn cryptocurrency video games, cryptocurrency trading companies, venture capital funds investing in cryptocurrency, and individual holders of large amounts of cryptocurrency or valuable non-fungible tokens (NFTs).”
The organizations advised companies and individuals to guard against social engineering attempts by the group to gain access to crypto by patching all systems, prioritizing patching known exploited vulnerabilities, training users to recognize and report phishing attempts and using multifactor authentication.
US Government Warns of North Korean Crypto Attacks After Tying Nation to $625M Hack
232