CryptoCore Criminal Group Has Been Targeting Cryptocurrency Exchanges for 3 Years

Cryptocurrency Mining Attacks

Cryptocurrency users and exchanges have been targeted by cybercriminals over the past couple of years. While some of the attacks are carried out by low-level criminals, there are also multiple large-scale campaigns that have resulted in millions being stolen from the victim. Security researchers suspect that they might have finally gathered enough pieces of information about one of the major organized crime groups targeting cryptocurrency exchanges in Europe, Japan, Israel, and the United States. The group, dubbed CryptoCore, appears to have ties to the North Korea-based Advanced Persistent Threat (APT) actor Lazarus. Furthermore, the CryptoCore criminals have allegedly stolen over $200,000,000 via their attack campaigns in the past three years.

The first traces of CryptoCore Criminal Group's activities date back to 2018 when they went after Japan-based cryptocurrency exchanges. The target was approached through malicious email attachments accompanied by a phishing message – they were sent to employees of the exchange. Allegedly, the malicious emails carried payloads that were previously used by the Lazarus APT. Furthermore, the North Korean hackers are also considered to be responsible for the development and maintenance of said malware.

The campaigns of the CryptoCore Criminal Group appear to be entirely financially-motivated, and they do not seem to have any political motivations. Recently, their attacks switched their focus towards Israeli-based cryptocurrency exchanges. The crooks often rely on Remote Access Trojans (RATs) and infostealers to achieve their goals. Their delivery methods and droppers continue to evolve, but the similarities with previous Lazarus attacks are undisputable.

By Ruik
May 25, 2021
Computer Security
English
May 25, 2021
Computer Security

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

Computer Security

The Golden Chickens Criminal Group Comes to Light

The Golden Chickens Criminal Group is a notorious name in the world of cybercrime, mainly because they are connected to a wide range of high-profile threat actors from around the world. These criminals specialize in... Read more

April 13, 2021
Computer Security

Babuk Ransomware Group Hits Metropolitan PD

The threat actors collectively known as the Babuk ransomware gang seem to have scored a new hit. The group says they have exfiltrated around 250 gigabytes of information from the Washington D.C. Metropolitan Police... Read more

April 28, 2021
Malware

Panda Stealer Targets Cryptocurrency Wallets and Web Browsers

The potential profits that cryptocurrency investments can bring have attracted millions of investors from around the world, and, unfortunately, many of them are likely to become the targets of scammers and... Read more

May 6, 2021
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.