Maererano nekunyatsoongorora postmortem, hacker inotsigirwa nehurumende yeNorth Korea chipfeko chaive nebasa rekushandisa $50 miriyoni yakanangana neRadiant Capital. Kuburikidza nekutaura kweTeregiramu yekunyepedzera, vapambi, avo vakazivikanwa seveboka reUNC4736 rekutyisidzira-rinozivikanwawo seCitrine Sleet-vakaisa malware vachishandisa hunyanzvi hwemagariro einjiniya.
Kuti vawane mukana weRadiant Capital, matsotsi akanyepedzera kuve "aimbovimbwa aimbova kontrakta" uye vakashandisa kuve kwechokwadi kwekubatana kwakagadzwa. Vaiti vane mushumo pamusoro pekushandiswa kwePenpie, chiitiko chakapfuura munharaunda yeDeFi, mune zip PDF file yavakagovana kuburikidza neTeregiramu. Nekudaro, INLETDRIFT malware, iyo yakagadzira backdoor pane macOS masisitimu, yaivepo mune zip faira.
Nekuchinja Safe{Wallet} interface—yaimbozivikanwa seGnosis Safe—iyi hack yakafumura mawareti ehardware evanoda kusvika vatatu vanogadzira Radiant. Iyo malware yakaita zvehutsotsi kutengeserana kumashure uku iyo interface yairatidza inoshanda data data.
Kunyangwe Radiant Capital yakashandisa indasitiri-yakajairwa nzira dzekuchengetedza, senge payload verification uye Tenderly simulations, vapambi vakakwanisa kukanganisa akati wandei ekugadzira michina.
Mandiant, kambani yecybersecurity, yakabatanidza kurwiswa kuUNC4736, mutambi wekutyisidzira ane zvisungo kuDPRK ane nhoroondo yekutora mukana wemakambani e bitcoin. Sangano rinozivikanwawo nekurwisa bitcoin exchanges uye kuparadzira AppleJeus malware. Kufungidzira kunoratidza kuti mari inosvika mabhiriyoni matatu emadhora yakabirwa kubva kuindasitiri yecryptocurrency pakati pa3 na2017, uye zvinofungidzirwa kuti mari yacho inotsigira chirongwa chezvombo zvenyukireya cheNorth Korea.
UNC4736 yakanangana nemasangano e-crypto-yakatarisana kutanga kwegore rino nekushandisa kusagadzikana kwezuva-zero muChromium browser, ichinzvenga chengetedzo yebhokisi rejecha. Iyo FBI yakaunza kutarisisa kune ekuchinja marongero eboka, ayo anosanganisira kuita senyanzvi dzeIT kuti vawane mukana wemari nemabhizinesi.
Masangano emari epasi rose ari kuwedzera mungozi kubva kuNorth Korea cybercrime, kunyanya munzvimbo ye cryptocurrency. Vatsvakurudzi veCyberwarcon Cybersecurity Conference vanoti matsotsi anotsigirwa nehurumende yeNorth Korea akaba mari inodarika mamiriyoni gumi emadhora mumwedzi mitanhatu chete vachinyepera vashandi chaivo kumakambani anozivikanwa.
Iyo Radiant Capital kesi inosimbisa kudikanwa kwekukurumidzira kwekuwedzera kuziva, matanho ekuchengetedza akawanda-akaiswa, uye kubatana kwenyika dzese kurwisa njodzi dzinounzwa nehurumende-inotsigirwa cyber kurwiswa sezvo iyo crypto indasitiri inonetsekana nekuwedzera kuomarara.