Budapest Post

Cum Deo pro Patria et Libertate
Budapest, Europe and world news

north korea hackers

East European Hackers Steal Over $200M from Cryptocurrency Exchanges, Targeting US, Japan

CryptoCore, believed to operate out of Eastern Europe, is now the second group which repeatedly targeted cryptocurrency exchanges during the past few years

An unknown cyber group from eastern Europe has stolen $70 million from Israel cryptocurrency exchanges, revealed cyber-security company ClearSky. The report said the crypto cyber gang, dubbed as "CryptoCore," has robbed cryptocurrency exchanges worth $200 million, especially focusing on Japan and the U.S.

As per the report, the ClearSky has been tracking the CryptoCore group campaigns for almost two years, with no conclusive understanding of the operators' origin. However, the company assessed with a medium level of certainty that the group has links to the East European region, Ukraine or Russia.

Or Blatt, Research Team Leader at ClearSky said they linked CryptoCore to five successful hacks and have noticed the group to target another 10 to 20 cryptocurrency exchanges. Some of the operations by the threat actors have been previously documented in several reports identifying the group as "Dangerous Password" and "Leery Turtle [PDF]."

But as per the Israeli security firm, CryptoCore's operations have been more ample and widespread than previously documented. In the report, the security firm clarified that,

"Cryptocurrency exchanges have become targets for constant attacks... Threat actors of all kinds try to infiltrate corporate networks for reconnaissance, ransomware deployment, and plainly to steal money from those exchanges, specifically from their 'hot' (i.e. active, connected) wallets"

The Tactics Are Same


As per the ClearSky despite operating for almost two years, the attacking tactics are almost the same, with a little variation. All attacks start with an information gathering stage during which the cybercriminals collect the required information to target an exchange's management, IT staff, and other employees.

They usually launch the first phishing attacks against personal email accounts, rather than the corporate ones, as they are less secure. ClearSky said that it is just a matter of hours to weeks until the spear-phishing email is sent to a corporate email account of an exchange's executive. The attacks are typically carried out by impersonating a high-ranking staff either from the target organization or from another organization with connections to the targeted employee.



The ultimate goal is to plant malware on an employee's system and gain access to a password manager account. The hackers from CryptoCore will use those passwords to access accounts and wallets, disable two-factor authentication systems, and then start transferring funds out of the exchange's "hot wallets."

While North Korea bases hackers have been the biggest threat to the cryptocurrency exchanges, CryptoCore is now the second group that has repeatedly targeted cryptocurrency exchanges during the past three to four years. However, the United Nation's panel on threat intelligence released a report which said that North Korean hackers stole around $571 million from at least five cryptocurrency exchanges in Asia between January 2017 and September 2018.

AI Disclaimer: An advanced artificial intelligence (AI) system generated the content of this page on its own. This innovative technology conducts extensive research from a variety of reliable sources, performs rigorous fact-checking and verification, cleans up and balances biased or manipulated content, and presents a minimal factual summary that is just enough yet essential for you to function as an informed and educated citizen. Please keep in mind, however, that this system is an evolving technology, and as a result, the article may contain accidental inaccuracies or errors. We urge you to help us improve our site by reporting any inaccuracies you find using the "Contact Us" link at the bottom of this page. Your helpful feedback helps us improve our system and deliver more precise content. When you find an article of interest here, please look for the full and extensive coverage of this topic in traditional news sources, as they are written by professional journalists that we try to support, not replace. We appreciate your understanding and assistance.
Newsletter

Related Articles

0:00
0:00
Close
Vatican hosts first Catholic LGBTQ pilgrimage
Apple Unveils iPhone 17 Series, iPhone Air, Apple Watch 11 and More at 'Awe Dropping' Event
France joins Eurozone’s ‘periphery’ as turmoil deepens, say investors
France Faces New Political Crisis, again, as Prime Minister Bayrou Pushed Out
Nayib Bukele Points Out Belgian Hypocrisy as Brussels Considers Sending Army into the Streets
France, at an Impasse, Heads Toward Another Government Collapse
The Country That Got Too Rich? Public Spending Dominates Norway Election
EU Proposes Phasing Out Russian Oil and Gas by End of 2027 to End Energy Dependence
More Than 150,000 Followers for a Fictional Character: The New Influencers Are AI Creations
EU Prepares for War
Trump Threatens Retaliatory Tariffs After EU Imposes €2.95 Billion Fine on Google
Tesla Board Proposes Unprecedented One-Trillion-Dollar Performance Package for Elon Musk
Gold Could Reach Nearly $5,000 if Fed Independence Is Undermined, Goldman Sachs Warns
Uruguay, Colombia and Paraguay Secure Places at 2026 World Cup
Trump Administration Advances Plans to Rebrand Pentagon as Department of War Instead of the Fake Term Department of Defense
Big Tech Executives Laud Trump at White House Dinner, Unveil Massive U.S. Investments
Tether Expands into Gold Sector with Profit-Driven Diversification
‘Looks Like a Wig’: Online Users Express Concern Over Kate Middleton
Florida’s Vaccine Revolution: DeSantis Declares War on Mandates
Trump’s New War – and the ‘Drug Tyrant’ Fearing Invasion: ‘1,200 Missiles Aimed at Us’
"The Situation Has Never Been This Bad": The Fall of PepsiCo
At the Parade in China: Laser Weapons, 'Eagle Strike,' and a Missile Capable of 'Striking Anywhere in the World'
The Fashion Designer Who Became an Italian Symbol: Giorgio Armani Has Died at 91
Putin Celebrates ‘Unprecedentedly High’ Ties with China as Gazprom Seals Power of Siberia-2 Deal
China Unveils New Weapons in Grand Military Parade as Xi Hosts Putin and Kim
Rapper Cardi B Cleared of Liability in Los Angeles Civil Assault Trial
Google Avoids Break-Up in U.S. Antitrust Case as Stocks Rise
Couple celebrates 80th wedding anniversary at assisted living facility in Lancaster
Information Warfare in the Age of AI: How Language Models Become Targets and Tools
The White House on LinkedIn Has Changed Their Profile Picture to Donald Trump
"Insulted the Prophet Muhammad": Woman Burned Alive by Angry Mob in Niger State, Nigeria
Trump Responds to Death Rumors – Announces 'Missile City'
Druzhba Pipeline Incident Sparks Geopolitical Tensions
Cost of Opposition Leader Péter Magyar's Economic Plan Revealed
Germany in Turmoil: Ukrainian Teenage Girl Pushed to Death by Illegal Iraqi Migrant
United Krack down on human rights: Graham Linehan Arrested at Heathrow Over Three X Posts, Hospitalised, Released on Bail with Posting Ban
Asian and Middle Eastern Investors Avoid US Markets
Ray Dalio Warns of US Shift to Autocracy
Eurozone Inflation Rises to 2.1% in August
Russia and China Sign New Gas Pipeline Deal
Von der Leyen's Plane Hit by Suspected Russian GPS Interference in an Incident Believed to Be Caused by Russia or by Pro-Peace or by Anti-Corruption European Activists
China's Robotics Industry Fuels Export Surge
Suntory Chairman Resigns After Police Probe
Gold Price Hits New All-Time Record
UK Fintechs Explore Buying US Banks
Greece Suspends 5% of Schools as Birth Rate Drops
Apollo to Launch $5 Billion Sports Investment Vehicle
Bolsonaro Trial Nears Close Amid US-Brazil Tension
European Banks Push for Lower Cross-Border Barriers
Poland's Offshore Wind Sector Attracts Investors
×