North Korea’s Lazarus Group uses crypto gifts now to breach security barriers
Lazarus Group of North Korea has adopted a novel method to breach crypto firms. It sends cryptocurrency to its targets as part an elaborate social engineering plan.
According to 23pds, the pseudonymous Chief Information Security Officer (CISO) at Web3 security firm SlowMist, this tactic aims to gain the victim’s trust before deploying malicious code.
The 23pds website revealed that a recipient received at least 400 USDT but the actual payouts could reach thousands.
He said:
“Lazarus hackers make hundreds or even thousands of dollars in direct payments to their victims in advance… Just to gain the victim’s trust.”
These payments make the attackers look more legitimate. This increases the chances that the victim will agree to their demands.
Hacking social engineering
The social engineering hack is a new approach that focuses on human behavior, as opposed to traditional cyberattacks which exploit technical vulnerabilities.
To gain credibility, hackers send digital assets and contact employees at crypto firms. Once trust has been established, they convince victims to execute malicious code with embedded backdoors.
These interactions usually occur via private GitHub repositories and live chat tools. Once the attackers gain access, they manipulate victims to run compromised code. This allows unauthorized entry into corporate systems.
In light of this, 23pds warns that crypto firms should strengthen their internal security measures and educate employees on how to identify such deceptive techniques.
He added that:
“All platforms, pls check yourself and make sure you pay attention to safety and train your staff on safety awareness.”
North Korean hackers
The incident highlights how crypto-related crimes are evolving as security concerns grow in the industry. It also suggests that the Lazarus Group may be preparing for a resurgence after reduced activity in late 2024.
North Korean hackers stole 1,34 billion dollars of the $2.2 billion total that was stolen from the crypto sector in 2024. The North Korean hackers stole $1.34 billion of the $2.2 billion in crypto sector thefts.
Their attack frequency decreased significantly after a June 2024 meeting between Russian President Vladimir Putin, and North Korean leader Kim Jong Un.
Posted in: North Korea. Featured. Hacks Author 
Oluwapelumi Adejumo
Oluwapelumi is a believer in Bitcoin’s power. He gives insights into a variety of topics, including DeFi hacks, culture, mining, and more.
@hardeyjumoh LinkedIn Email Oluwapelumi Editor
Assad Jafri
AJ has been a journalist for more than a decade, and he’s gained his expertise in many countries. Specialized in financial reporting, he is now focused on crypto journalism.
@Saajthebard Linked Email Editor Ad 
