North Korea has a pot? New research shows that the theft of Coincheck is actually done by Russian hackers.

According to the Asahi Shimbun report today, the personal computer of the Coincheck employee of the Japanese crypto exchange was found to be infected with a virus related to Russian hacking organizations.

In January 2018, Coincheck suffered a hacker attack. The $534 million NEM (new currency) was stolen and the stolen amount was the highest in the history of cryptocurrency.

Earlier reports said that this high-profile attack was initiated by North Korean-related attackers, but the latest research raises questions about this claim.

Crypto

Experts are currently considering that the crime may have been caused by "a group of unknown hackers."

In a recent survey of Coincheck employees' personal computers, researchers discovered the "Mokes" and "Netwire" viruses. These computers may install and spread the virus in the form of emails, giving them the opportunity to gain unauthorized access to the exchange's private key.

Given that both known viruses have been used by Russian hackers before, an American expert told the media:

"After the analysis of the virus, Eastern Europe and Russia may be related to the criminal group."

According to reports, both viruses allow hackers to take control of infected computers and perform remote operations. In June 2011, Morks was first promoted at a forum in Russia, and it is reported that cybersecurity investigators have known Netwire for 12 years.

Prior to this, several security companies believed that the theft of Coincheck was related to North Korean hackers. Due to sanctions imposed by Western countries, North Korea is considered to conduct normal economic activities through illegal acquisition of cryptocurrencies.

For example, this spring, a South Korean cybersecurity company claimed that North Korean hackers were behind the scenes of phishing scams for UpBit users on the Korean cryptocurrency exchange.

In a report last February, the South Korean National Intelligence Agency said phishing scams and other means have brought tens of billions of won to North Korea. The North Korean authorities are also alleged to be investigating whether the country is behind the scenes of the Coincheck attack.

However, it seems that North Korea has been on the back of Coincheck’s theft.

We will continue to update Blocking; if you have any questions or suggestions, please contact us!

Share:

Was this article helpful?

93 out of 132 found this helpful

Discover more

Blockchain

The data is good for the stock market of the sudden market: Which is the liquidity of the exchange?

This paper analyzes and compares the liquidity of major exchanges on April Fool's Day. In the short time from 12...

Blockchain

FTX Bankruptcy Estate Bets Big $150 Million SOL and ETH on the Line as Sam Bankman-Fried's Trial Unfolds

It seems that addresses associated with the insolvent cryptocurrency exchange, which is currently being managed by a ...

Blockchain

Part of the speculative platform, the blockchain heat is “revived”, and the regulators successively punched out virtual currency transactions.

Reporter Zhang Mo Beijing reports Source: Economic Information In response to the recent resurgence of some of the vi...

News

Who can take the lead in breaking the exchange contract?

Mark Lamb, CEO of CoinFLEX, predicts that by the end of 2020, the derivatives market will reach 20 times the size of ...

Market

The short-lived boom is hard to sustain, the second major crash after FTX is on its way.

Macro recession, will it make crypto become a safe haven asset, or will it collapse the entire crypto world? Original...

Blockchain

The compliance exchange is about to appear in Singapore?

On December 18, 2019, the official website of the Monetary Authority of Singapore (hereinafter referred to as "M...