{"id":1595,"date":"2023-08-23T19:00:00","date_gmt":"2023-08-23T19:00:00","guid":{"rendered":"https:\/\/www.darkreading.com\/threat-intelligence\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group"},"modified":"2023-08-23T19:00:00","modified_gmt":"2023-08-23T19:00:00","slug":"fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2023\/08\/23\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group\/","title":{"rendered":"FBI Warns of Cryptocurrency Heists by North Korea’s Lazarus Group"},"content":{"rendered":"

<\/p>\n

<\/div>\n
\n
\n

The FBI has tracked hundreds of millions of dollars in cryptocurrency stolen by the Democratic People’s Republic of Korea (DPRK)<\/a> TraderTraitor-affiliated actors, more commonly referred to as <\/span>Lazarus Group<\/a> or APT38, and is now warning cryptocurrency companies of this malicious blockchain activity.<\/p>\n

In an investigation, the FBI found that these threat actors moved 1,580 bitcoins from multiple cryptocurrency heists and are holding the funds in six different bitcoin addresses. The group may attempt to cash out the stolen cryptocurrency, amounting to more than $40 million.<\/p>\n

This cybercrime group<\/a> was also responsible for multiple high-profile heists in June<\/a> spanning multiple countries, including $60 million of the virtual currency from Alphapo, $37 million from CoinsPaid, and $100 million from Atomic Wallet.<\/p>\n

The federal agency recommends that private sector entities examine these bitcoin addresses as well as any blockchain data associated with them. These entities should also be hyperaware of guarding against transactions from these particular addresses: <\/p>\n

    \n
  1. 3LU8wRu4ZnXP4UM8Yo6kkTiGHM9BubgyiG<\/li>\n
  2. 39idqitN9tYNmq3wYanwg3MitFB5TZCjWu<\/li>\n
  3. 3AAUBbKJorvNhEUFhKnep9YTwmZECxE4Nk<\/li>\n
  4. 3PjNaSeP8GzLjGeu51JR19Q2Lu8W2Te9oc<\/li>\n
  5. 3NbdrezMzAVVfXv5MTQJn4hWqKhYCTCJoB<\/li>\n
  6. 34VXKa5upLWVYMXmgid6bFM4BaQXHxSUoL<\/li>\n<\/ol>\n

    The FBI will continue to expose and combat the DPRK’s use of illicit activities \u2014 including cybercrime and virtual currency theft \u2014 to generate revenue for the regime,” the agency said in a statement. “If you have any information to provide, please contact <\/span><\/span>your local FBI field office<\/a> <\/span>or the FBI’s Internet Crime Complaint Center at <\/span><\/span>ic3.gov<\/a>.”<\/span><\/p>\n<\/div>\n<\/div>\n

    \n

    Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.<\/p>\n

    Subscribe<\/a><\/div>\n

    Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

    The FBI has tracked hundreds of millions of dollars in<\/p>\n","protected":false},"author":12,"featured_media":1596,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[809],"class_list":["post-1595","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-dark-reading"],"featured_image_urls":{"full":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?fit=342%2C343&ssl=1",342,343,false],"thumbnail":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?resize=150%2C150&ssl=1",150,150,true],"medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?fit=300%2C300&ssl=1",300,300,true],"medium_large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?fit=342%2C343&ssl=1",342,343,true],"large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?fit=342%2C343&ssl=1",342,343,true],"1536x1536":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?fit=342%2C343&ssl=1",342,343,true],"2048x2048":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?fit=342%2C343&ssl=1",342,343,true],"chromenews-featured":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?fit=342%2C343&ssl=1",342,343,true],"chromenews-large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?resize=342%2C343&ssl=1",342,343,true],"chromenews-medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?resize=342%2C343&ssl=1",342,343,true]},"author_info":{"display_name":"Dark Reading","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/darkreading\/"},"category_info":"Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","jetpack_featured_media_url":"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/fbi-warns-of-cryptocurrency-heists-by-north-koreas-lazarus-group.jpg?fit=342%2C343&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1595","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=1595"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1595\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media\/1596"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=1595"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=1595"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=1595"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}