In recent years, North Korea’s Lazarus Group has emerged as one of the most formidable cyber threats in the world. Formed around 2009 and operating under the North Korean military intelligence, this group has a primary objective of cyberespionage and generating illicit revenue. You’ve probably heard of their various aliases, like APT38 and Labyrinth Chollima. With ties to Lab 110 and Bureau 121, they’ve been linked to an astonishing $5 billion in stolen cryptocurrency from 2021 to 2025 alone.
Their early activities set the stage for their later exploits. You might remember the Sony Pictures hack in 2014 or the WannaCry ransomware attack in 2017 that crippled over 230,000 computers globally. Initially, their attacks aimed at espionage and disrupting perceived enemies, like their Operation Flame targeting South Korean government systems in 2007. However, their tactics evolved dramatically as they shifted focus to the lucrative world of cryptocurrency.
In July 2017, they executed their first major crypto hack, targeting the Bithumb Exchange and stealing over $7 million. As you can see, they’ve since honed their skills in exploiting Web3 technologies, which allow for rapid asset drainage and high-reward potential. They utilize social engineering, phishing, and even exploit weak oversight in the crypto space to move stolen funds quickly.
Their sophisticated laundering tactics, from layering to obscuring transaction trails, have made it increasingly difficult for authorities to track their activities. In recent attacks, Lazarus has displayed alarming efficiency. They successfully targeted the Ronin Bridge and the Atomic Wallet, raking in significant losses for victims. Just in September 2023 alone, they stole $41 million from the online casino Stake.com and a staggering $1.46 billion from Bybit, marking one of the largest crypto thefts in history.
You might find it particularly troubling that their tactics now even involve fake job offers to lure unsuspecting victims. Through such schemes, they compromise credentials and tokens via phishing attacks. They’ve also modified open-source tools, infecting developers’ systems with malware, demonstrating their ability to blend in with legitimate operations. Their ongoing military espionage efforts are indicative of their persistent threat to both organizations and individuals alike.
This speed and sophistication in their attacks underscore how critical it’s for individuals and organizations to stay vigilant against such threats. As the cyber landscape evolves, so too do the tactics of these infamous hackers, making awareness your best defense.
McAfee Total Protection with Scam Detector | Avoid Phishing Emails, Texts, Video and QR Code Scams with Scam Protection Software App for iPhone & Android | 1-Year Subscription with Auto-Renewal
- All-in-One Scam Protection: Detects phishing, QR, and deepfake scams
- Prevent Financial Loss: Blocks scam emails, texts, and alerts
- Mobile-First Security: Works seamlessly on iPhone and Android
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Miseyo Wide Identity Theft Protection Roller Stamp Set – Yellow (3 Refill Ink Included)
- Alternative to Shredding: Recycles paper after stamping
- Dimensions and Coverage: 2.36 x 1.26 x 2.36 inches, wide coverage
- Privacy Protection: Hides sensitive info to prevent identity theft
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
CompTIA CySA+ Certification Kit: Exam CS0-003
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
BUSINESS PASSWORD MANAGER: A Professional Logbook for Passwords, Accounts & Digital Access
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
