Kuzey Kore Bağlantılı Kimlik Avı Kampanyası NFT Kullanıcılarını Hedefliyor
- Güney Kore'deki güvenlik uzmanları, Kuzey Kore'nin ekonomisine yönelik yaptırımları takiben daha fazla para toplamaya çalışırken bilgisayar korsanlarını desteklediğini iddia ediyor.
- Bilgisayar korsanları, yalnızca 2022'de kripto projelerinden $1 milyardan fazla yağmaladı.
Crypto analysts and researchers have keşfetti OpenSea, X2Y2 ve Rarible gibi popüler pazar yerlerinde jeton satın alan NFT kullanıcılarını besleyen, Kuzey Kore ile bağlantılı bilgisayar korsanları tarafından yapılan bir kimlik avı kampanyası. Keşiflere göre, kullanıcılar bu platformlarda sözde meşru NFT'ler satın alıyor ve basım sürecini tamamlamak için dolandırıcılık sitelerine yönlendiriliyor.
However, these websites tried to collect vital data from the minting process, including IP addresses, and authorizations. Users were allegedly tricked into performing authorizing actions such as sending their Seaport signature, which is required to confirm NFT contracts created on OpenSea.
The scam initiative has allegedly been going on for some months. Researchers claim that there are over 500 domains operating these kinds of “malicious mints”. The early domains were reportedly created earlier this year. Additionally, the large bulk of these domains shared the same IP address and earned the hackers a profit of $366,000.
Bilgisayar korsanları tasarlanmış various schemes this year, and North Korea has been traced to some of the biggest hacks on crypto platforms this year. South Korea’s main intelligence service noted that cybercriminals with ties to North Korea have robbed about $1.2 billion in the past five years.
North Korea is said to have turned to cybercrime as a means of generating income following U.N. sanctions imposed in 2016 and 2017 as a result of the country’s nuclear program. North Korea has been unable to profit from its resources and seems to have backed hackers to bring in extra income.