The DeBridge team thwarts possible cyber attack by the Lazarus group

by Arthur · August 5, 2022

Table of Contents

Important takeaways

DeBridge Finance fended off a cyber attack yesterday, according to co-founder Alex Smirnov.
The method suggests that the entity behind the attempted attack may be the North Korean hacker syndicate Lazarus Group.
Lazarus Group is the crime organization responsible for Axie Infinity’s $550 million Ronin bridge hack.

The North Korean hacking syndicate Lazarus Group is believed to be behind a failed cyber attack on deBridge Finance yesterday.

Close call

A suspected hacking attempt by North Korean cybercriminals has been foiled.

DeBridge Finance co-founder Alex Smirnov posted on Twitter today that the protocol’s team had been the subject of an attempted cyber attack that may have been developed by the North Korean hacking syndicate Lazarus Group.

According to Smirnov, several members of the deBridge team received emails yesterday with PDFs attached to them titled “New Salary Adjustments.” Downloading the file and submitting password information would have triggered a data collection virus on affected computers, and the virus would have then transmitted the collected data to an “attacker command center.”

Smirnov claims The PDF titles, “New Salary Adjustments,” were used by Lazarus Group hackers in previous cyberattacks; he further warned all teams in Web3 to be on the lookout for similar attacks, believing the campaign to be “widespread”. The deBridge protocol itself had not been affected by the attempted cyber attack, Smirnov assured.

The Lazarus Group gained notoriety in the crypto space in March for utilizes Axie Infinity’s $550 million Ronin bridge, the biggest hack in crypto history. According to DeFiance Capital founder Arthur Cheong, Lazarus Group is just one of several state-backed North Korean hacking syndicates currently targeting the crypto room; Cheong believes “all prominent organizations” in the industry are at risk. Cyber security firm Kaspersky has echoed Cheong’s warnings, claim that another group called BlueNoroff is targeting crypto startups.

North Korean hacking groups have also used cryptocurrencies in ransom attacks against other sectors of the economy. Last month, the US Department of Justice recovered $500,000 from North Korean hackers who had forced two US hospitals to send Bitcoin ransoms to regain access to their servers.

Disclosure: At the time of writing, the author of this piece held ETH and several other cryptocurrencies.

The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representations or warranties as to the timeliness, completeness or accuracy of information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not provide personal investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may be out of date, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update outdated, incomplete or inaccurate information.

You should never make an investment decision on an ICO, IEO or other investment based on the information on this website, and you should never interpret or otherwise rely on the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice about an ICO, IEO or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sale, securities or commodity.

See full terms and conditions.