North Korean APT Hacker Group Steals 300 ETH and Over 1,000 NFTs in Phishing Attacks: Report

December 28, 2022

By Anjali Kochhar

Blockchain security company SlowMist has found out that the North Korean APT hacker group was responsible for large-scale crypto and NFT phishing attacks that net the group roughly 300 ETH.

According to the company, a wallet linked to one of the phishing websites of the group received a total of 1,055 NFTs and made a profit of approximately 300 ETH through sales.

The wallet was initially funded through Binance. The report added that the wallet interacted with several risky addresses. Additionally, several of the NFT phishing sites share the same host IP.

There were 372 NFT sites under a single IP and another 320 phishing sites under another IP.

SlowMist also discovered a Defi platform run by North Korean hackers. Meanwhile, the security firm also identified some form of collaboration between North Korean and Eastern Europe hackers.

South Korea’s spy agency said North Korea-backed hackers have reportedly stolen over $1 billion worth of crypto assets since 2017.

According to the report, the state-backed malicious players stole half of the amount in 2022 alone.

The South Korean agency said North Korea depends on crypto-hacking activities to fund its nuclear program and also to support its fragile economy. Several reports have linked North Korean hacker groups like Lazarus to major hacks recorded in the industry this year.

The group is reportedly responsible for the $100 million Harmony bridge exploit and the over $600 million exploit of Axie Infinitie’s Ronin bridge.

About the author

Anjali Kochhar covers cryptocurrency stories in India as well as globally. Having been in the field of media and journalism for over three years now, she has developed a sharp news sense and works hard to present information that goes beyond the obvious. She is an avid reader and loves writing on a wide range of subjects.

Translate Now