The North Korean state-sponsored Lazarus Group has launched a new campaign targeting cryptocurrency exchanges using an evolved version of their TraderTraitor malware. The campaign, attributed by the FBI and CISA jointly, has resulted in the theft of over $340 million in cryptocurrency assets over the past six months.
The attackers use sophisticated social engineering tactics, posing as recruiters offering high-paying jobs at blockchain companies to lure cryptocurrency developers into downloading malicious packages.