Saturday, July 12, 2025
No Result
View All Result
Blockchain Broadcast
  • Home
  • Bitcoin
  • Crypto Updates
    • General
    • Altcoin
    • Ethereum
    • Crypto Exchanges
  • NFT
  • Blockchain
  • Metaverse
  • DeFi
  • Web3
  • Analysis
  • Regulations
  • Scam Alert
Crypto Marketcap
Blockchain Broadcast
  • Home
  • Bitcoin
  • Crypto Updates
    • General
    • Altcoin
    • Ethereum
    • Crypto Exchanges
  • NFT
  • Blockchain
  • Metaverse
  • DeFi
  • Web3
  • Analysis
  • Regulations
  • Scam Alert
No Result
View All Result
Blockchain Broadcast
No Result
View All Result

Lazarus hacker forgets VPN, gets exposed

June 2, 2025
in Altcoin
Reading Time: 3 mins read
0 0
A A
0
Home Altcoin
Share on FacebookShare on Twitter


If you already know something a couple of crypto hack, you have in all probability heard of the Lazarus Group.

They’re just about the ultimate boss of crypto cybercrime – a North Korean state-backed hacking group liable for a number of the greatest thefts within the business, together with the Bybit hack earlier this yr.

They’ve all the time carried this boogeyman of blockchain, mysterious vibe. However a brand new BitMEX report pulled again the curtain a bit.

And seems… they don’t seem to be as flawless as some would possibly suppose.

Over time, Lazarus appears to have break up into smaller groups, and never all of them are equally expert. Some are execs. Others – not a lot.

Living proof: a BitMEX worker bought a message on LinkedIn about becoming a member of a crypto challenge.

In case you’ve adopted Lazarus’ previous scams, you already know that is one thing they’ve finished earlier than – so the worker flagged it to the safety group.

They had been despatched a GitHub repo with a Subsequent.js/React challenge that – shock – contained malware.

The attacker wished them to run the code domestically, which might’ve let malicious scripts execute on the worker’s pc.

Now, here is what BitMEX discovered within the code:

It used JavaScript’s eval() perform, which takes a chunk of textual content and treats it like code. So if it says “delete the whole lot,” your pc will really attempt to run that command – and that opens the door for attackers to sneak in dangerous code;

The malware tried to hook up with suspicious URLs to obtain much more code – the form of infrastructure Lazarus has used earlier than in previous assaults;

It collected information like usernames, IP addresses, working methods, and uploaded all of it to… watch for it… a public Supabase database 😀👍

Sure. Public.

That is like utilizing Google Sheets to retailer stolen information… after which leaving the spreadsheet unlocked.

Think smart

The BitMEX group took a glance and located almost 900 logs from contaminated machines.

And in one among them, they caught a giant oopsie: a hacker forgot to activate their VPN and uncovered their actual location in Jiaxing, China.

As a substitute of treating this oopsie as a one-off discovery, BitMEX noticed a chance right here – they constructed a instrument to maintain checking the database.

This lets BitMEX:

Monitor new infections as they occur;

Determine who’s being focused – devs, alternate employees, or random customers;

Look ahead to repeat errors by the hackers (like extra IP leaks);

Probably map out patterns – like places, time zones, or organizational targets.

Lazarus continues to be harmful – little doubt about it.

However the extra we study their tips (and their errors), the simpler it turns into to guard individuals from falling for them.

Now you are within the know. However take into consideration your mates – they in all probability do not know. I’m wondering who might repair that… 😃🫵

Unfold the phrase and be the hero you already know you’re!



Source link

Tags: exposedforgetsHackerLazarusVPN
Previous Post

Solana price falls 18% in May as SEC scrutiny cuts open interest by $330M

Next Post

Ethereum Poised For A 5-Figure Breakout – Volatility Is Shaking ‘Weak Hands’

Related Posts

Top US-Based Crypto Exchange by Trading Volume Coinbase Adds Support for DeFi Tokens SKY and USDS
Altcoin

Top US-Based Crypto Exchange by Trading Volume Coinbase Adds Support for DeFi Tokens SKY and USDS

July 11, 2025
Hacker Returns M, Keeps 10% as Reward
Altcoin

Hacker Returns $20M, Keeps 10% as Reward

July 11, 2025
Robinhood’s Low-Cost Crypto Claim Under Investigation
Altcoin

Robinhood’s Low-Cost Crypto Claim Under Investigation

July 12, 2025
Zero-Knowledge Proof Altcoin Lagrange (LA) Crashes Following Announcement of New Binance Listing
Altcoin

Zero-Knowledge Proof Altcoin Lagrange (LA) Crashes Following Announcement of New Binance Listing

July 11, 2025
Bitcoin hit a new all-time high
Altcoin

Bitcoin hit a new all-time high

July 11, 2025
WeAreDevelopers World Congress 2025: AI in the Spotlight
Altcoin

WeAreDevelopers World Congress 2025: AI in the Spotlight

July 10, 2025
Next Post
Ethereum Poised For A 5-Figure Breakout – Volatility Is Shaking ‘Weak Hands’

Ethereum Poised For A 5-Figure Breakout – Volatility Is Shaking ‘Weak Hands’

XRP drops 34% from January peak as crypto reserve plan fall short

XRP drops 34% from January peak as crypto reserve plan fall short

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Facebook Twitter Instagram Youtube RSS
Blockchain Broadcast

Blockchain Broadcast delivers the latest cryptocurrency news, expert analysis, and in-depth articles. Stay updated on blockchain trends, market insights, and industry innovations with us.

CATEGORIES

  • Altcoin
  • Analysis
  • Bitcoin
  • Blockchain
  • Crypto Exchanges
  • Crypto Updates
  • DeFi
  • Ethereum
  • Metaverse
  • NFT
  • Regulations
  • Scam Alert
  • Uncategorized
  • Web3
No Result
View All Result

SITEMAP

  • About Us
  • Advertise With Us
  • Disclaimer
  • Privacy Policy
  • DMCA
  • Cookie Privacy Policy
  • Terms and Conditions
  • Contact Us

Copyright © 2024 Blockchain Broadcast.
Blockchain Broadcast is not responsible for the content of external sites.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
  • bitcoinBitcoin(BTC)$117,732.00-0.08%
  • ethereumEthereum(ETH)$2,952.66-0.86%
  • rippleXRP(XRP)$2.785.37%
  • tetherTether(USDT)$1.000.01%
  • binancecoinBNB(BNB)$689.210.14%
  • solanaSolana(SOL)$161.27-1.59%
  • usd-coinUSDC(USDC)$1.000.00%
  • dogecoinDogecoin(DOGE)$0.1985990.17%
  • tronTRON(TRX)$0.3020771.99%
  • staked-etherLido Staked Ether(STETH)$2,950.06-0.85%
No Result
View All Result
  • Home
  • Bitcoin
  • Crypto Updates
    • General
    • Altcoin
    • Ethereum
    • Crypto Exchanges
  • NFT
  • Blockchain
  • Metaverse
  • DeFi
  • Web3
  • Analysis
  • Regulations
  • Scam Alert

Copyright © 2024 Blockchain Broadcast.
Blockchain Broadcast is not responsible for the content of external sites.