👉👉👉 #NorthKorean hackers deploy ‘Durian’ malware, targeting crypto firms


A recent report reveals that the state-sponsored North Korean hacking group, Kimsuky, has unleashed a sophisticated new malware variant named "Durian" to target South Korean #cryptocurrency firms.

According to cybersecurity firm Kaspersky's threat report released on May 9, Kimsuky deployed the Durian malware in a series of precise attacks against at least two cryptocurrency companies in South Korea. The attacks were characterized by their persistence, exploiting legitimate security software exclusively used by these crypto firms.

Durian, previously unknown to cybersecurity experts, functions as an installer responsible for deploying various malware payloads. Among these payloads are a backdoor named "AppleSeed," a specialized proxy tool called LazyLoad, and other legitimate software like Chrome Remote Desktop.

Kaspersky's analysis indicates that Durian offers extensive backdoor capabilities, enabling the execution of commands, downloading additional files, and the unauthorized extraction of data.

Furthermore, the report highlights that LazyLoad has been previously utilized by Andariel, a subgroup within the well-known North Korean hacking collective Lazarus Group. This connection suggests a potential link between Kimsuky and the more infamous Lazarus Group, adding a layer of complexity to the cybersecurity landscape.


Since its emergence in 2009, Lazarus has earned infamy as one of the most notorious groups of cryptocurrency hackers.

On April 29, blockchain investigator ZachXBT uncovered that the Lazarus group had successfully laundered over $200 million in illicit cryptocurrency transactions between 2020 and 2023.


Lazarus faces accusations of stealing over $3 billion in cryptocurrency assets spanning six years until 2023. In 2023, they were linked to pilfering over $309 million, which accounted for 17% of the total stolen funds. Reports from Immunefi reveal that cryptocurrency hacks and exploits in 2023 alone resulted in losses of over $1.8 billion.

Source - cointelegraph.com