The latest investigation suggests that North Korean hackers, known as the TraderTraitor group, were behind the Japanese crypto exchange DMM Bitcoin hack. The TraderTraitor hackers reportedly have close ties with the infamous Lazarus Group.

Back in May, the incident saw the exchange lose 4,502 Bitcoin, valued at $308 million.

The Hack That Caused DMM Bitcoin to Shutdown

The DMM Bitcoin exploit was one of the largest crypto hacks of the year. The significant losses and failed retrieval efforts ultimately caused the exchange to shut down earlier this month.

Initially, the attack was linked to the infamous Lazarus group, but US and Japanese officials now believe a more niche North Korean group, called the TraderTraitor group, was behind the attack.

According to the FBI, the hackers used advanced social engineering techniques to target Ginco, a Japanese crypto wallet company. In March, they posed as recruiters on LinkedIn and sent a malicious link disguised as a pre-employment test hosted on GitHub.

Unfortunately, a Ginco employee unknowingly executed the code, compromising their GitHub account. Subsequently, the hackers exploited the stolen information.

By May, they impersonated the Ginco employee to infiltrate Ginco’s communication systems. This allowed them to manipulate a legitimate transaction request from a DMM Bitcoin employee. As a result, the attackers transferred the stolen Bitcoin to wallets they controlled.

Despite efforts to compensate users by purchasing replacement Bitcoin, the financial impact proved insurmountable. Ultimately, the company announced its closure and plans to transfer its accounts to SBI VC Trade by Ma

Go to Source to See Full Article
Author: Farah Ibrahim