The security team of the Bitmex Crypto Exchange gaps discovered within the surgical security of the Lazarus Group, a cybercrime network (DPRK) sponsored by the DPRK), which in line with a counter-control probe within the organization, the IP addresses, a database, and the persecution of algorithms utilized by the malicious group.
Security researchers for the Exchange say that there may be an excellent probability that a minimum of one hacker by accident revealed his true IP address, which showed the actual place of the hacker in Jiaxing, China.
In addition, the Bitmex researchers say that they were also capable of gain access to an instance of the Supabase database, a platform for the simple provision of databases with easy interfaces for applications utilized by the hacking group.
The Bitmex security team said that certainly one of the hackers probably by accident unveiled its true IP address after the VPN was used often to mask the IP address. Source: Bitmex
According to the report, the asymmetry between the group's social engineering teams emphasized within the evaluation to make unsuspecting victims to download malicious software and interact with highly developed code exploits developed by high-tech hackers.
This asymmetry signals that the North Korean state-related hacking organization has broken down into separate subgroups, whereby various threat functions work together to cheat users, said the Bitmex team.
The report follows a variety of top-class hacking incidents, social engineering fraud and the infiltration of blockchain and technology firms which can be as a result of the Lazarus Group and other North Korean agents.
State authorities and governments sound alarm within the Lazarus Group
The worldwide law enforcement agencies and governments of the federal government are increasingly investigating the activities of hackers connected to the DVRK, and explaining the alarm for a variety of common fraud strategies utilized by these threat actors.
In September 2024, the US Federal Bureau of Investigation (FBI) gave a warning of social engineering fraud, which was committed by the DPRK-supported group, including phishing attempts which can be targeting crypto users with fake employment offers.
https://www.youtube.com/watch?v=NDV0RFEHETQ
The governments of Japan, the USA and South Korea repeated the FBI warning in January 2025 and characterised the Hacking activity as a threat to the economic system.
In a report recently shown by Bloomberg, the leaders of the world can discuss the specter of the Lazarus hacking group at the following G7 summit and techniques for reducing the organization associated by the DVRK.
