North Korea has a pot? New research shows that the theft of Coincheck is actually done by Russian hackers.

According to the Asahi Shimbun report today, the personal computer of the Coincheck employee of the Japanese crypto exchange was found to be infected with a virus related to Russian hacking organizations.

In January 2018, Coincheck suffered a hacker attack. The $534 million NEM (new currency) was stolen and the stolen amount was the highest in the history of cryptocurrency.

Earlier reports said that this high-profile attack was initiated by North Korean-related attackers, but the latest research raises questions about this claim.

Crypto

Experts are currently considering that the crime may have been caused by "a group of unknown hackers."

In a recent survey of Coincheck employees' personal computers, researchers discovered the "Mokes" and "Netwire" viruses. These computers may install and spread the virus in the form of emails, giving them the opportunity to gain unauthorized access to the exchange's private key.

Given that both known viruses have been used by Russian hackers before, an American expert told the media:

"After the analysis of the virus, Eastern Europe and Russia may be related to the criminal group."

According to reports, both viruses allow hackers to take control of infected computers and perform remote operations. In June 2011, Morks was first promoted at a forum in Russia, and it is reported that cybersecurity investigators have known Netwire for 12 years.

Prior to this, several security companies believed that the theft of Coincheck was related to North Korean hackers. Due to sanctions imposed by Western countries, North Korea is considered to conduct normal economic activities through illegal acquisition of cryptocurrencies.

For example, this spring, a South Korean cybersecurity company claimed that North Korean hackers were behind the scenes of phishing scams for UpBit users on the Korean cryptocurrency exchange.

In a report last February, the South Korean National Intelligence Agency said phishing scams and other means have brought tens of billions of won to North Korea. The North Korean authorities are also alleged to be investigating whether the country is behind the scenes of the Coincheck attack.

However, it seems that North Korea has been on the back of Coincheck’s theft.

We will continue to update Blocking; if you have any questions or suggestions, please contact us!

Share:

Was this article helpful?

93 out of 132 found this helpful

Discover more

Blockchain

Three major domestic virtual currency exchanges focus on compliance business and actively engage with local governments and state-owned enterprises

China Times (www.chinatimes.net.cn) reporter Ran Xuedong trainee reporter An Lingfei Beijing reports The currency cir...

Opinion

Interview with She Knows|Exclusive dialogue network project TOP Network, Fetch.AI, IEO will continue to fire?

On April 2nd, the second season of Babit's first-community interactive interview column, She Knows, was launched...

Blockchain

Research Report | Exchange Industry 2019 Q1 Report

In the first quarter of 2019, the digital clearing exchange industry changed dramatically. After a long bear market i...

Blockchain

Interpretation of wallet data: The exchange holds more than 12.4 billion mainstream currencies, who is the largest Holder?

QUICK TAKE The cryptocurrency exchange currently holds at least $12.4 billion in Bitcoin, Ethereum and USDT (Tether) ...

Market

Solana’s Spectacular Comeback: Moons and Stumbles

In 2023, the token has increased by over four times its starting value of $10, making it a lucrative investment for F...