December 25, 2024
North Korea Blamed for May's $305M Hack on Japanese Crypto Exchange DMM thumbnail
Business

North Korea Blamed for May’s $305M Hack on Japanese Crypto Exchange DMM

Japanese police and U.S. agencies said the attack was “affiliated” with TraderTraitor, which is characterized by social engineering.”, — write: www.coindesk.com

North Korea Blamed for May’s $305M Hack on Japanese Crypto Exchange DMMJapanese police and U.S. agencies said the attack was “affiliated” with TraderTraitor, which is characterized by social engineering.Updated Dec 24, 2024, 1:05 p.m. UTCPublished Dec 24, 2024, 12:10 p.m. UTC

The $308 million hack of Japanese crypto exchange DMM in May was the work of North Korean hackers, the U.S. and Japanese law enforcement agencies said Monday.

The theft of 4,502.9 bitcoin (BTC), which is forcing the exchange to close, was “affiliated” with a group known as TraderTraitor, the FBI said in a statement with the Department of Defense Cyber Crime Center and National Police Agency of Japan.

Hackers linked to North Korea dominated crypto crime this year, Chainalysis said in its annual report on the subject. The country, whose official name is the Democratic People’s Republic of Korea (DPRK), is tied to more than half of the crypto value stolen in 2024. Its operatives are responsible for the theft of $1.34 billion across 47 incidents, more than double the $660 million (a figure revised down from an initial estimate) taken last year.

TraderTraitor, also known as Jade Sleet, UNC4899 and Slow Pisces, generally works by targeted social engineering, according to the statement. In this case, malicious code was inserted into a Python script used in a fictitious pre-employment test and sent by an operative posing as a recruiter on LinkedIn to a candidate who worked at an outside enterprise, crypto wallet company Ginco.

The victim copied the code to their personal Github page, giving TraderTraitor access to session cookie information that allowed it access to Ginco’s communications system. Months later, it probably used the access to intercept a legitimate transaction request by a DMM employee, leading to the theft, the agencies said.

Sheldon RebackSheldon Reback is CoinDesk’s European news editor. Before joining the company, he spent 26 years as an editor at Bloomberg News, where he worked on beats as diverse as stock markets and the retail industry as well as covering the dot-com bubble of 2000-2002. He subsequently managed the Bloomberg Terminal’s main news page before becoming the European editor for a global project to produce short, chart-based stories across the newsroom. His previous work as a journalist took him to Hong Kong, where he reported and edited for several technology magazines. Sheldon has a degree in industrial chemistry and an MBA. He owns ether and bitcoin below CoinDesk’s notifiable limit.

X icon

Picture of CoinDesk author Sheldon Reback

Related posts

OpenAI announced new o3 AI models that “think”

business ua

Reduction of the population of Ukraine: how to avoid a hopeless scenario?

business ua

Coinbase CEO, Other Crypto Insiders Billions Richer After Seeking to Steer Elections

coindesk com

Leave a Comment

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More