North Korean hackers carry out a series of attacks on Japanese crypto companies
The attackers sent phishing emails to employees to infect their computers with malware

17.10.2022 - 09:45
1065
2 min
0
What’s new? According to Japan’s National Police Agency (NPA), the North Korean hacker group Lazarus has carried out cyberattacks targeting local companies dealing with crypto assets. The attackers sent phishing emails to employees to infect their computers with malware. Some companies had their internal systems hacked and cryptocurrency stolen. The regional police, after receiving reports of the damage, launched a joint operation with the NPA’s special cybercrime investigation unit, created in April this year, JapanNews reports.
What else does the publication report? The NPA does not disclose information about individual internal cases involving Lazarus. According to sources, the hacker group is believed to be involved in stealing about 6,7 billion yen ($45 million) in bitcoins and other cryptocurrencies from crypto exchange Zaif in 2018, and 3,5 billion ($23,6 million) from Bitpoint Japan in 2019.
On October 14, the NPA, along with the Financial Services Agency (FSA) and the National Center of Incident Readiness and Strategy for Cybersecurity (NISC), issued a warning urging people not to open suspicious links in emails.
Katsuyuki Okamoto of information security company Trend Micro Inc noted that Lazarus originally attacked banks in various countries, but more recently the hackers have been targeting crypto assets. He stressed that it is important to inform the public, as this will raise their awareness of the attackers’ tactics and encourage them to take protective measures.
In June, analysts at Elliptic suggested that hackers from Lazarus could be behind the Horizon Bridge hack on the Harmony network. The exploit and money laundering features are similar to other incidents Lazarus has been confirmed to be involved in. Experts have also suggested that the group focuses on targets in the APAC for linguistic reasons.
In August, Alex Smirnov, co-founder of deBridge, a cross-chain protocol, spoke about an attempted attack on the project by Lazarus. The attackers also sent out emails containing malware through the fake email of one of the company’s executives.
In September, US authorities seized $30 million in cryptocurrency that had been stolen from the Ronin Network sidechain by hackers from the DPRK in March 2022.
Useful material?
Crypto regulations
Under the new law, no cryptocurrency reserve can be created at the state level
Jun 11, 2025
Mining
This is the 300th block mined within this pool
Jun 5, 2025
Incidents
The marketplace started operating in 2022 and allowed trading in stolen personal data
Jun 5, 2025
Incidents
Hackers laundered assets using Tornado Cash, Thorchain, and Wasabi mixers
Jun 2, 2025
Market
After June 30, fines and prison sentences will be imposed for violating the rules
Jun 2, 2025
Crypto regulations
He also stated the country’s aspiration to become a Eurasian IT hub
May 29, 2025