Lazarus transferred 1,580 BTC to 6 addresses, which can be seen as the first step in a potential sale.
The FBI has discovered that the North Korean hacking group, the Lazarus Group, has stolen millions of dollars worth of cryptocurrency through multiple attacks over the past few years.
The security agency believes the criminals could soon cash out 1,580 bitcoins (worth nearly $41 million at current prices).
Keep an eye on Lazarus' behavior
FBI releases statement notifying cryptocurrency firms of potential upcoming action by Lazarus (APT38).
According to law enforcement groups, North Korean hackers have moved 1,580 BTC (generated through multiple recent thefts) to six addresses, a move the FBI believes signals a future sale of the assets (currently worth approximately $40.8 million).
The FBI warned that “private sector entities should examine blockchain data associated with these addresses and remain vigilant against transactions directly to or derived from these addresses. The FBI will continue to expose and disrupt North Korea’s use of illicit activities, including cybercrime and virtual currency theft, to generate revenue for the regime.”
Lazarus has been linked to multiple cryptocurrency thefts over the past few years, including one of the industry’s largest heists: the $600 million breach of the Ronin Bridge. The FBI insists the group is also responsible for the theft of $60 million worth of digital currency from Alphapo in June of this year and the breach of Harmony’s Horizon Bridge in 2022, resulting in losses worth $100 million.
Lazarus Group: North Korea's Cyber Weapons
The Pyongyang-led cybercrime organization has made headlines several times over the past decade. According to Wikipedia, the entity was founded in 2009 for the purpose of conducting cyber espionage. As the cryptocurrency industry progressed, the organization shifted its focus to target exchanges and various platforms to drain the digital assets contained therein.
Lazarus hackers are well-trained and can deploy various types of malware onto computer networks and servers. The Center for a New American Security (CNAS) warned last year that the group uses sophisticated techniques to steal and launder cryptocurrency:
“This major intrusion included a sophisticated array of hacking and money laundering techniques, including professional mixing services and the use of new DeFi platforms, in an attempt to obfuscate activity.”
A White House official went a step further this year, claiming that 50 percent of North Korea’s missile testing was funded with funds stolen from the Lazarus blockchain data platform. #FBI #Lazarus
