Campaña de phishing vinculada a Corea del Norte dirigida a usuarios de NFT
- Los expertos en seguridad en Corea del Sur afirman que Corea del Norte respalda a los piratas informáticos mientras intenta recaudar más fondos luego de las sanciones a su economía.
- Los piratas informáticos han saqueado más de $1 mil millones de proyectos criptográficos solo en 2022.
Crypto analysts and researchers have descubierto una campaña de phishing de piratas informáticos con vínculos con Corea del Norte que se aprovecha de los usuarios de NFT que compran tokens en mercados populares como OpenSea, X2Y2 y Rarible. Según los descubrimientos, los usuarios compran NFT supuestamente legítimos en estas plataformas y son redirigidos a sitios fraudulentos para completar el proceso de acuñación.
However, these websites tried to collect vital data from the minting process, including IP addresses, and authorizations. Users were allegedly tricked into performing authorizing actions such as sending their Seaport signature, which is required to confirm NFT contracts created on OpenSea.
The scam initiative has allegedly been going on for some months. Researchers claim that there are over 500 domains operating these kinds of “malicious mints”. The early domains were reportedly created earlier this year. Additionally, the large bulk of these domains shared the same IP address and earned the hackers a profit of $366,000.
Los piratas informáticos tienen ideado various schemes this year, and North Korea has been traced to some of the biggest hacks on crypto platforms this year. South Korea’s main intelligence service noted that cybercriminals with ties to North Korea have robbed about $1.2 billion in the past five years.
North Korea is said to have turned to cybercrime as a means of generating income following U.N. sanctions imposed in 2016 and 2017 as a result of the country’s nuclear program. North Korea has been unable to profit from its resources and seems to have backed hackers to bring in extra income.