• North Korean hackers have created over 70 fake domain names to masquerade as banks and venture capitalists for the purpose of stealing cryptocurrency.
• The cybercrime gang has been exploring new file formats and other ways of delivering viruses.
• North Korea is one of the leading countries involved in global cryptocurrency theft.

Kaspersky Labs has published a report revealing that the North Korean hacking group “BlueNoroff” has created more than 70 domains that mimic the names of banks and venture capital firms to scam users out of millions of dollars in digital currency.

Most of the domains which claimed to be popular businesses were phony, with some masquerading as Japanese, American, and Vietnamese companies.

The crew was investigating novel file formats and other methods for virus distribution. The malware is able to dodge Windows Mark-of-the-Web download safety warnings and proceed to intercept large cryptocurrency transfers. By changing the recipient address and increasing the transfer amount above the threshold, the crooks can empty the account in one transaction.

Kaspersky also discovered that the BlueNoroff gang employed .iso and bitmap disk images to spread malicious software. In September of last year, the organization did a complete investigation of the criminals.

According to Kaspersky research, the utilization of…

This article was originally posted on Coin Edition. See the Original Post on CoinEdition