Report: North Korean hackers stepping up crypto attacks – UPI News

Latest Headlines

World News // 3 minutes ago

Ukraine confirms Soledar withdrawal, two missing Britons confirmed dead

Jan. 25 (UPI) — Ukraine confirmed their forces’ withdrawal from Soledar Wednesday, as pro-Russian officials claim that Russian forces are advancing on Bakhmut. Britain has confirmed two missing citizens died in Ukraine.

---

World News // 3 hours ago

Germany to send Leopard 2 tanks to Ukraine; Biden to speak on U.S. aid

Jan. 25 (UPI) — German Chancellor Olaf Scholz announced Wednesday that it will send its Leopard 2 tanks to Ukraine in support of its defense against Russia, winning praise from its European allies.

---

World News // 1 hour ago

Pakistan police arrest PTI party leader

Jan. 25 (UPI) — Pakistani authorities arrested Fawad Chaudhry, the leader of the PTI party and an important ally of former Prime Minister Imran Khan, on charges he was plotting against the country on Wednesday.

---

World News // 1 hour ago

British Amazon workers strike in first for the tech giant

Jan. 25 (UPI) — Workers at an Amazon warehouse in Britain walked out Wednesday in a strike over pay and conditions, the first time the U.S. tech giant has been hit by industrial action in the country.

---

World News // 1 hour ago

U.S.-South Africa task force to fight wildlife trafficking and related money laundering

Jan. 25 (UPI) — The U.S. Treasury Department and South Africa’s National Treasury will form the new United States-South Africa Task Force to combat illicit finance linked to the illegal wildlife trade.

---

World News // 2 hours ago

Microsoft investigating cloud outage disrupting services globally

Jan. 25 (UPI) — Microsoft 365 users worldwide experienced a cloud outage Wednesday that globally disrupted several Microsoft products, including Teams and Outlook.

---

World News // 4 hours ago

New Zealand’s new PM Chris Hipkins pledges to tackle inflation, cost of living

Jan. 25 (UPI) — Chris Hipkins took control of the New Zealand government on Wednesday as prime minister, promising action to lower skyrocketing inflation and other action to stabilize the economy of the island nation.

---

World News // 20 hours ago

Without president, reforms, bankrupt Lebanon somehow holds on

BEIRUT, Lebanon, Jan. 24 (UPI) — More than three years into its devastating financial crisis, Lebanon has done little to resolve its problems, with deep political divisions preventing the election of a new president and the implementation of reforms.

---

World News // 23 hours ago

CPJ: 67 journalists killed in 2022

Jan. 24 (UPI) — The number of journalists killed around the world rose sharply to 67 in 2022, up from 45 in 2021, according to a yearly report from the Committee to Protect Journalists published Tuesday.

---

World News // 1 day ago

Poland formally requests German permission to send tanks to Ukraine

Jan. 24 (UPI) — Poland said Tuesday that Berlin has received its request to send some of its German-built Leopard 2 tanks to Ukraine so it can defend itself against Russia.

---

SEOUL, Jan. 25 (UPI) — North Korean hackers are displaying a “startup mentality” as they experiment with new methods to pull off cryptocurrency heists, a report by cybersecurity firm Proofpoint said Wednesday.
The Sunnyvale, Calif.-based firm said a group they identify as TA444, which overlaps with infamous hacker collective Lazarus, launched a massive wave of phishing attacks in December targeting the financial, education, government and healthcare sectors in the United States and Canada.

The group’s emails used approaches that differed from tactics researchers had previously associated with them, including efforts to gain users’ passwords and login information.
“This sprawling credential harvesting activity is a deviation from normal TA444 campaigns, which typically involve the direct deployment of malware,” the report said.

The hackers used email marketing tools to help avoid phishing filters and created content such as job offers and salary adjustments to lure targets. They also relied on social media networking service LinkedIn to engage with victims before delivering links to malware, the researchers said.
Proofpoint said the December spam wave nearly doubled the volume of emails sent by the group for the entire year.
Greg Lesnewich, senior threat researcher at Proofpoint, said in an email that TA444 has a “startup mentality” and is “testing a variety of infection chains to help expand its revenue streams.”

“This threat actor rapidly ideates new attack methods while embracing social media as part of their M.O.,” he said. “TA444 spearheads North Korea’s cashflow generation for the regime by bringing in launderable funds.”
North Korea remains under heavy international sanctions and has increasingly turned to cybercrime in an effort to finance its illicit weapons program.
The Pyongyang-affiliated Lazarus Group was behind the stunning theft of more than $600 million in cryptocurrency from an online video game network in March, according to the FBI.

On Monday, the FBI also confirmed that the Lazarus Group was responsible for a $100 million heist in June of Horizon Bridge, a crypto transfer service operated by U.S.-based Harmony blockchain.
South Korea’s National Intelligence Service said last month that North Korea had stolen cryptocurrency assets worth $1.2 billion globally since 2017, with the majority of it coming in 2022.
The spy agency warned that Pyongyang was expected to step up its efforts this year to steal sensitive intelligence and defense technology from the South.

source