North Korean hackers taint open-source code to steal crypto and developers’ data



News North Korean hackers taint open-source code to steal crypto and developers’ data Lazarus Group embedding ‘state-of-the-art’ malware into software projects, potentially compromising millions of users Shreyas Reddy February 14, 2025 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON Illustration of cryptocurrency theft from a compromised computer North Korean cybercriminals are embedding new “state-of-the-art” malware within open-source software projects to steal cryptocurrency and sensitive data from developers, marking a significant evolution in their tactics, according to a U.S. cybersecurity firm. As part of a campaign dubbed “Operation Marstech Mayhem” by security researchers, North Korea’s Lazarus group has introduced a new implant named “Marstech1” with advanced obfuscation capabilities to evade detection, SecurityScorecard said in a report published on Thursday. This campaign’s focus on cryptocurrency theft is a hallmark of Lazarus operations, with the group having orchestrated some of the biggest Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01Kim Jong Un awards more military towns new projects, reversing vow to poor areas 02How a US-Russia deal on Ukraine could reshape North Korea’s strategic future 03North Korea-Russia migration surge points to covert military and labor moves 04Chronic delays plague basic North Korean construction projects, imagery shows 05North Korea’s procurement of cars, diamonds highlights extensive trade network 06North Korea deepens Belarus relations but keeps focus on Moscow and Washington 07North Korea starts new project at large-scale military training base 08How North Korea could leverage China’s DeepSeek AI model for military, cyber ops

News

North Korean hackers taint open-source code to steal crypto and developers’ data

Lazarus Group embedding ‘state-of-the-art’ malware into software projects, potentially compromising millions of users

Shreyas Reddy February 14, 2025

North Korean hackers taint open-source code to steal crypto and developers’ data

Illustration of cryptocurrency theft from a compromised computer

North Korean cybercriminals are embedding new “state-of-the-art” malware within open-source software projects to steal cryptocurrency and sensitive data from developers, marking a significant evolution in their tactics, according to a U.S. cybersecurity firm.

As part of a campaign dubbed “Operation Marstech Mayhem” by security researchers, North Korea’s Lazarus group has introduced a new implant named “Marstech1” with advanced obfuscation capabilities to evade detection, SecurityScorecard said in a report published on Thursday.

This campaign’s focus on cryptocurrency theft is a hallmark of Lazarus operations, with the group having orchestrated some of the biggest

North Korean hackers taint open-source code to steal crypto and developers’ data

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy