La campagna di phishing con legami con la Corea del Nord prende di mira gli utenti NFT

• Gli esperti di sicurezza della Corea del Sud affermano che la Corea del Nord sostiene gli hacker mentre cerca di raccogliere più fondi a seguito delle sanzioni alla sua economia.

• Gli hacker hanno saccheggiato più di $1 miliardo da progetti crittografici solo nel 2022.

---

Crypto analysts and researchers have scoperto una campagna di phishing da parte di hacker con legami con la Corea del Nord che depreda gli utenti NFT che acquistano token su mercati popolari come OpenSea, X2Y2 e Rarible. Secondo le scoperte, gli utenti acquistano presunti NFT legittimi su queste piattaforme e vengono reindirizzati a siti truffa per completare il processo di conio.

However, these websites tried to collect vital data from the minting process, including IP addresses, and authorizations. Users were allegedly tricked into performing authorizing actions such as sending their Seaport signature, which is required to confirm NFT contracts created on OpenSea.

The scam initiative has allegedly been going on for some months. Researchers claim that there are over 500 domains operating these kinds of “malicious mints”. The early domains were reportedly created earlier this year. Additionally, the large bulk of these domains shared the same IP address and earned the hackers a profit of $366,000.

Gli hacker hanno ideato various schemes this year, and North Korea has been traced to some of the biggest hacks on crypto platforms this year. South Korea’s main intelligence service noted that cybercriminals with ties to North Korea have robbed about $1.2 billion in the past five years.

North Korea is said to have turned to cybercrime as a means of generating income following U.N. sanctions imposed in 2016 and 2017 as a result of the country’s nuclear program. North Korea has been unable to profit from its resources and seems to have backed hackers to bring in extra income.

Ultime notizie