The Lazarus Group continues its assault on the crypto market by utilizing Tornado Cash and introducing new malware targeting developers.
Lazarus and Tornado Cash: New Challenges
On March 13, 2024, experts from CertiK identified a 400 ETH transaction linked to the Lazarus Group using the Tornado Cash platform. Known for several major crypto heists, such as attacks on Bybit and Phemex, the group continues to exploit services like THORChain to conceal their illicit transactions.
Targeting Developers
Beyond money laundering, Lazarus has intensified its attacks on software developers. Six new malware instances were discovered on the NPM platform, including BeaverTail, which employs typosquatting to mimic popular libraries. These malwares allow attackers to access sensitive information, including browser and wallet credentials.
Risks to the Crypto Ecosystem
According to Chainalysis, North Korean hackers stole $1.3 billion in 2024, more than double the previous year. This activity highlights an ongoing threat to the security of crypto assets. The use of Tornado Cash and THORChain complicates the detection and blocking of illegal transactions for authorities.
Amidst growing threats from cybercrime, developers and companies must bolster their security measures to safeguard against attacks.
