North Korean hackers stole cryptocurrency while skimming credit cards: Report



News North Korean hackers stole cryptocurrency while skimming credit cards: Report Group-IB’s analysis of a Lazarus CC-skimming campaign also revealed malware designed to steal BTC, ETH Min Chao Choy April 16, 2021 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON flyerwerk from Pixabay Hackers suspected of belonging to the North Korea-linked Lazarus Group used a new kind of malicious JavaScript to steal digital money from online retailers that accept cryptocurrencies for payment, security firm Group-IB warned in a report this week. The hackers planted the code in online shopping websites, some of which had already been infected with so-called skimming malware that steals credit card information from customers. Group-IB researchers called the campaign “BTC Changer” — and payments made to retailers went to Lazarus’ cryptocurrency wallets instead. “BTC Changer marks the first time that a threat actor used malicious Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01How long-range strikes on Russia could impact North Korean troop deployments 02How North Korean hackers and IT workers collude to cause chaos 03What pro-Trump think tanks reveal about his likely North Korea policy priorities 04Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump. 05All the question marks hanging over Trump’s approach to North Korea in term two 06Time almost up for North Korea’s plan to launch 3 military satellites in 2024 07Trump return rekindles prospects of North Korea talks, but Russia stands in way 08How China could benefit from North Korea’s troop deployment to Ukraine

News

North Korean hackers stole cryptocurrency while skimming credit cards: Report

Group-IB’s analysis of a Lazarus CC-skimming campaign also revealed malware designed to steal BTC, ETH

Min Chao Choy April 16, 2021

North Korean hackers stole cryptocurrency while skimming credit cards: Report

Hackers suspected of belonging to the North Korea-linked Lazarus Group used a new kind of malicious JavaScript to steal digital money from online retailers that accept cryptocurrencies for payment, security firm Group-IB warned in a report this week.

The hackers planted the code in online shopping websites, some of which had already been infected with so-called skimming malware that steals credit card information from customers. Group-IB researchers called the campaign “BTC Changer” — and payments made to retailers went to Lazarus’ cryptocurrency wallets instead.

“BTC Changer marks the first time that a threat actor used malicious

01How long-range strikes on Russia could impact North Korean troop deployments
02How North Korean hackers and IT workers collude to cause chaos
03What pro-Trump think tanks reveal about his likely North Korea policy priorities
04Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump.
05All the question marks hanging over Trump’s approach to North Korea in term two
06Time almost up for North Korea’s plan to launch 3 military satellites in 2024
07Trump return rekindles prospects of North Korea talks, but Russia stands in way
08How China could benefit from North Korea’s troop deployment to Ukraine

North Korean hackers stole cryptocurrency while skimming credit cards: Report

LATEST ANALYSIS

Similar Articles

About the Author

Min Chao Choy