Cryptocurrency, Engineering and Social Engineering

North Korean Hackers Steal $1.5B in Cryptocurrency

Schneier on Security

FEBRUARY 25, 2025

From there, the cryptocurrency was transferred out of Bybit altogether and into wallets controlled by the unknown attackers. […] …a subsequent investigation by Safe found no signs of unauthorized access to its infrastructure, no compromises of other Safe wallets, and no obvious vulnerabilities in the Safe codebase.

Cryptocurrency

Cryptocurrency Social Engineering Hacking Engineering

Social Engineering Attack: Coinbase Customer Data Stolen, 70K Users Affected

Penetration Testing

MAY 22, 2025

cryptocurrency exchange Coinbase recently disclosed that it had fallen victim to a sophisticated social The post Social Engineering Attack: Coinbase Customer Data Stolen, 70K Users Affected appeared first on Daily CyberSecurity. The publicly listed U.S.

Social Engineering

Social Engineering Engineering Cryptocurrency Cybersecurity

A Day in the Life of a Prolific Voice Phishing Crew

Krebs on Security

JANUARY 7, 2025

KrebsOnSecurity recently told the saga of a cryptocurrency investor named Tony who was robbed of more than $4.7 million in cryptocurrencies from Tony was verify-trezor[.]io. Federal Communications Commission (FCC), as well as those working at the cryptocurrency exchanges Coinbase and Binance. Image: Shutterstock, iHaMoo.

Phishing

Phishing Cryptocurrency Accountability Social Engineering

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

SecureWorld News

APRIL 22, 2025

A sophisticated cybercrime campaign, dubbed Elusive Comet , has been uncovered, in which North Korean threat actors are exploiting Zoom's remote control feature to infiltrate the systems of cryptocurrency professionals. The research behind the discovery was released by Security Alliance , which tracked and analyzed the campaign.

Cryptocurrency

Cryptocurrency Social Engineering Cybercrime Engineering

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

According to prosecutors, the group mainly sought to steal cryptocurrency from victim companies and their employees. Those accounts state that the intruders assaulted Tylerb’s mother in the home invasion, and that they threatened to burn him with a blowtorch if he didn’t give up the keys to his cryptocurrency wallets.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Krebs on Security

NOVEMBER 21, 2020

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week. 13, with an attack on cryptocurrency trading platform liquid.com. “Our security team investigated and confirmed threat actor activity, including social engineering of a limited number of GoDaddy employees.

Cryptocurrency

Cryptocurrency VPN Scams Social Engineering

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

“This is social engineering at the highest level and there will be failed attempts at times. Donahue said 60 technology companies are now routing all law enforcement data requests through Kodex, including an increasing number of financial institutions and cryptocurrency platforms. Don’t be discouraged.

Hacking

Hacking Accountability Government Social Engineering

Large-scale cryptocurrency miner campaign targets Russian users with SilentCryptoMiner

Security Affairs

MARCH 10, 2025

Experts warn of a large-scale cryptocurrency miner campaign targeting Russian users with SilentCryptoMiner. Using this social engineering trick, threats like stealers, RATs, Trojans, and crypto miners can persist undetected. Common malware families include NJRat , XWorm, Phemedrone , and DCRat.

Cryptocurrency

Cryptocurrency Malware Social Engineering Antivirus

Romance Scammers Target Cryptocurrency Investors with Social Engineering and Fake Exchanges

Penetration Testing

MAY 13, 2024

AhnLab’s Mobile Analysis Team has issued an alarm about an insidious new breed of romance scams specifically targeting cryptocurrency enthusiasts.

Social Engineering

Social Engineering Cryptocurrency Engineering Penetration Testing

Happy 15th Anniversary, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2024

The first profiled Cryptomus , a dodgy cryptocurrency exchange allegedly based in Canada that has become a major payment processor and sanctions evasion platform for dozens of Russian exchanges and cybercrime services online.

Scams

Scams Cybercrime Cryptocurrency Social Engineering

DMM Bitcoin $308M Bitcoin heist linked to North Korea

Security Affairs

DECEMBER 25, 2024

authorities attributed the theft of $308 million cryptocurrency from DMM Bitcoin to North Korean cyber actors. authorities linked the $308 million cyber heist targeting cryptocurrency company DMM Bitcoin to North Korea-linked threat actors. On June 1st, the Japanese cryptocurrency exchange DMM Bitcoin announced that crooks stole 4,502.9

Cryptocurrency

Cryptocurrency Social Engineering Hacking Cybercrime

North Korean Hacking Group Sapphire Sleet Employs Social Engineering to Steal Cryptocurrency

Penetration Testing

NOVEMBER 12, 2023

Microsoft has issued a warning about the North Korean hacking group Sapphire Sleet (BlueNoroff), which is deploying a new infrastructure for impending social engineering campaigns on LinkedIn.

Social Engineering

Social Engineering Cryptocurrency Engineering Penetration Testing

MailChimp Suffers Data Breach in Latest Social Engineering Attack

SecureWorld News

JANUARY 20, 2023

Popular email marketing service MailChimp recently fell victim to another data breach, this time caused by a successful social engineering attack on its employees and contractors.

Social Engineering

Social Engineering Data breaches Engineering Accountability

Water Labbu Abuses Malicious DApps to Steal Cryptocurrency

Trend Micro

OCTOBER 3, 2022

The parasitic Water Labbu capitalizes on the social engineering schemes of other scammers, injecting malicious JavaScript code into their malicious decentralized application websites to steal cryptocurrency.

Cryptocurrency

Cryptocurrency Social Engineering Engineering Cyber threats

Crooks social-engineered GoDaddy staff to take over crypto-biz domains

Security Affairs

NOVEMBER 24, 2020

Crooks were able to hijack traffic and email to various cryptocurrency-related websites as a result of a DNS hijacking attack on domains managed by GoDaddy. The threat actors were able to modify DNS settings by tricking GoDaddy employees into handing over the control of the targeted domains with social engineering attacks.

Social Engineering

Social Engineering Engineering DNS Accountability

U.S. Indicts North Korean Hackers in Theft of $200 Million

Krebs on Security

FEBRUARY 17, 2021

Secret Service and Department of Homeland Security told reporters on Wednesday the trio’s activities involved extortion, phishing, direct attacks on financial institutions and ATM networks, as well as malicious applications that masqueraded as software tools to help people manage their cryptocurrency holdings. Image: CISA.

Cryptocurrency

Cryptocurrency Financial Services Banking Government

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

Security Affairs

NOVEMBER 21, 2024

Scattered Spider members are part of a broader cybercriminal community called “The Com,” where hackers brag about high-profile cyber thefts, typically initiated through social engineering tactics like phone, email, or SMS scams to gain access to corporate networks. ” reads the press release published by DoJ.

Cybercrime

Cybercrime Identity Theft Cryptocurrency Phishing

Deceptive Google Meet Invites Lures Users Into Malware Scams

eSecurity Planet

OCTOBER 22, 2024

Cybercriminals employ social engineering techniques to trick you into believing you must resolve fictitious technical issues. The hallmark of ClickFix campaigns is their clever use of social engineering. AMOS stealer: Specifically targets macOS systems, stealing sensitive data and credentials.

Scams

Scams Malware Phishing Social Engineering

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Security Affairs

NOVEMBER 15, 2024

The malware could harvest a huge trove of data from infected systems, including cookies, autofill, cryptocurrency wallets, 2FA authenticators, password managers, and email client information. Researchers from Gen Digital who discovered the threat, believe it is in its early development phase.

Encryption

Encryption Password Management Cryptocurrency Social Engineering

Mastermind: Social Engineering, BEC Attacks, Millions in Cash and Crypto

SecureWorld News

SEPTEMBER 9, 2021

Then there was the money laundering, the cryptocurrency, the digital wallets. Business email compromise scheme and social engineering. Social engineering—in person—was the next part of the scheme. Those are some of the highlights, now let's look at a few specifics. Too many do.

Social Engineering

Social Engineering Engineering Banking Cybercrime

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

GoDaddy described the incident at the time in general terms as a social engineering attack, but one of its customers affected by that March 2020 breach actually spoke to one of the hackers involved. But we do know the March 2020 attack was precipitated by a spear-phishing attack against a GoDaddy employee.

Hacking

Hacking Social Engineering Phishing Scams

Coinbase breached by social engineers, employee data stolen

Naked Security

FEBRUARY 21, 2023

Another day, another "sophisticated" attack. This time, the company has handily included some useful advice along with its mea culpa.

Social Engineering

Social Engineering Engineering Cryptocurrency

North Korea steals $400m cryptocurrency through Cyber Attacks

CyberSecurity Insiders

JANUARY 17, 2022

North Korea, the nation that is being led by Kim Jong UN is back into news headlines for stealing cryptocurrency worth millions through cyber attacks. The post North Korea steals $400m cryptocurrency through Cyber Attacks appeared first on Cybersecurity Insiders.

Cryptocurrency

Cryptocurrency Cyber Attacks Social Engineering Banking

Node.js malvertising campaign targets crypto users

Security Affairs

APRIL 17, 2025

Then the DLL launches a decoy by opening an msedge_proxy window that displays a legitimate cryptocurrency trading website. In a documented instance, attackers used a ClickFix social engineering tactic to trick users into running a PowerShell command that downloads and installs Node.js to deploy malicious payloads. components.

Social Engineering

Social Engineering Malware Cryptocurrency Engineering

Cinobi Banking Trojan Targets Cryptocurrency Exchange Users via Malvertising

Trend Micro

AUGUST 8, 2021

We found a new social engineering-based malvertising campaign targeting Japan that delivered a malicious application. The malicious application abused sideloading vulnerabilities to load and start the Cinobi banking trojan.

Banking

Banking Social Engineering Cryptocurrency Engineering

The Original APT: Advanced Persistent Teenagers

Krebs on Security

APRIL 6, 2022

The smash-and-grab attacks by LAPSUS$ obscure some of the group’s less public activities, which according to Microsoft include targeting individual user accounts at cryptocurrency exchanges to drain crypto holdings. ” Like LAPSUS$, these vishers just kept up their social engineering attacks until they succeeded.

Social Engineering

Social Engineering Phishing Engineering Accountability

Feds Break Up Major SIM-Hijacking Ring

Adam Levin

MAY 15, 2019

The hacking group, called “The Community” primarily used social engineering (trickery) and SIM card hijacking to steal funds and cryptocurrency from their victims.

Identity Theft

Identity Theft Social Engineering Mobile Authentication

Crazy Evil gang runs over 10 highly specialized social media scams

Security Affairs

FEBRUARY 3, 2025

The Russian-speaking Crazy Evil group runs over 10 social media scams, tricking victims into installing StealC, AMOS, and Angel Drainer malware. Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency. ” reads the report published by Insikt Group.

Scams

Scams Media Cryptocurrency Cybercrime

EDR-as-a-Service makes the headlines in the cybercrime landscape

Security Affairs

APRIL 7, 2025

By simply paying the fee, usually in cryptocurrencies, the customer will receive the sensitive material ready to be exploited. Guidebooks are also available to instruct on how to exploit the information obtained, in order to more effectively target victims through social engineering and doxxing campaigns.

Cybercrime

Cybercrime Social Engineering Accountability Government

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

Digital Shadows

JANUARY 22, 2025

In this blog, well preview the reports highlights and give insights into social engineering campaigns leveraging impersonating domains and our predictions for the threats shaping 2025. Organizations should implement domain monitoring, enforce DMARC policies, and train employees to recognize social engineering methods.

Insurance

Insurance Phishing Social Engineering Engineering

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. 12 blog post , the attackers used their access to Mailchimp employee accounts to steal data from 214 customers involved in cryptocurrency and finance. 9, 2024, U.S.

Social Engineering

Social Engineering Mobile Passwords Cybercrime

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

Allen said a typical voice phishing or “vishing” attack by this group involves at least two perpetrators: One who is social engineering the target over the phone, and another co-conspirator who takes any credentials entered at the phishing page and quickly uses them to log in to the target company’s VPN platform in real-time.

Phishing

Phishing VPN Social Engineering Media

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Krebs on Security

JUNE 15, 2024

One of the more popular SIM-swapping channels on Telegram maintains a frequently updated leaderboard of the most accomplished SIM-swappers, indexed by their supposed conquests in stealing cryptocurrency. That leaderboard currently lists Sosa as #24 (out of 100), and Tylerb at #65.

Hacking

Hacking Cybercrime Phishing Passwords

The Link Between Ransomware and Cryptocurrency

eSecurity Planet

DECEMBER 21, 2021

Cryptocurrency Fuels Ransomware. One constant in all this will be cryptocurrency, the coin of the realm when it comes to ransomware. Cryptocurrency really is fueling this in a sense. … If you were to take cryptocurrency away from that, they don’t have a convenient digital platform.

Cryptocurrency

Cryptocurrency Ransomware Cybercrime Social Engineering

North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn

The Hacker News

NOVEMBER 23, 2024

The North Korea-linked threat actor known as Sapphire Sleet is estimated to have stolen more than $10 million worth of cryptocurrency as part of social engineering campaigns orchestrated over a six-month period.

Social Engineering

Social Engineering Scams Cryptocurrency Malware

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

Organizations face rising risks of AI-driven social engineering and personal device breaches. Dooley Doug Dooley , COO, Data Theorem In 2025, cybersecurity threats will escalate across APIs, cloud setups, supply chains, and cryptocurrency. AI-powered cryptocurrency attacks will automate phishing and exploit vulnerabilities.

Risk

Risk Threat Detection Technology Phishing

Social Engineering Tactics: Sympathy and Assistance Themes

Security Through Education

NOVEMBER 19, 2024

Social engineering scams frequently exploit our desire to help by using themes of sympathy and assistance to manipulate us. The victim is asked to wire money, transfer cryptocurrency, or share sensitive information like credit card details, to “help” them in their current situation.

Social Engineering

Social Engineering Engineering Scams Cryptocurrency

Social Engineering Tactics: Sympathy and Assistance Themes

Security Through Education

NOVEMBER 19, 2024

Social engineering scams frequently exploit our desire to help by using themes of sympathy and assistance to manipulate us. The victim is asked to wire money, transfer cryptocurrency, or share sensitive information like credit card details, to “help” them in their current situation.

Social Engineering

Social Engineering Engineering Scams Cryptocurrency

North Korea Targets DeFi and Crypto Companies with Advanced Social Engineering Attacks

Penetration Testing

SEPTEMBER 4, 2024

The FBI has warned sternly about North Korean state-sponsored hackers employing highly sophisticated social engineering tactics to infiltrate decentralized finance (DeFi) and cryptocurrency companies.

Social Engineering

Social Engineering Engineering Cryptocurrency Cybersecurity

Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware

The Hacker News

APRIL 3, 2025

The North Korean threat actors behind Contagious Interview have adopted the increasingly popular ClickFix social engineering tactic to lure job seekers in the cryptocurrency sector to deliver a previously undocumented Go-based backdoor called GolangGhost on Windows and macOS systems.

Social Engineering

Social Engineering Cryptocurrency Malware Engineering

North Korean Lazarus APT group targets blockchain tech companies

Malwarebytes

APRIL 19, 2022

A new advisory issued by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the US Treasury Department (Treasury), highlights the cyberthreats associated with cryptocurrency thefts and tactics used by a North Korean state-sponsored advanced persistent threat (APT) group since at least 2020.

Cryptocurrency

Cryptocurrency Social Engineering Computers and Electronics Engineering

Lazarus Hackers Make Use of Fraudulent Crypto Apps, US Warns

Heimadal Security

APRIL 19, 2022

CISA, the FBI, and the US Treasury Department have recently issued a warning that firms in the cryptocurrency and blockchain industries are being targeted by the North Korean Lazarus hacking gang. It seems that the threat actors are using trojanized cryptocurrency applications in this wave of cyberattacks.

Social Engineering

Social Engineering Cryptocurrency Engineering Hacking

3 Ways to Keep Your Cryptocurrency Safe

Security Boulevard

APRIL 30, 2021

Are you investing in cryptocurrency or thinking about it? Be sure to listen or watch our April monthly show for our top 3 ways to keep your cryptocurrency safe! ** Links mentioned on the show ** 10 Ways to Keep Your Cryptocurrency Safe [link] Beware of These Top Bitcoin Scams [link] 9 Best Crypto Wallets […].

Cryptocurrency

Cryptocurrency Scams Social Engineering Engineering

The BlueNoroff cryptocurrency hunt is still on

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. Note, this is no proof that the companies listed were compromised.

Cryptocurrency

Cryptocurrency Malware Accountability Banking

North Korean Hackers Steal $1.5B in Cryptocurrency

Social Engineering Attack: Coinbase Customer Data Stolen, 70K Users Affected

Trending Sources

A Day in the Life of a Prolific Voice Phishing Crew

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

Feds Charge Five Men in ‘Scattered Spider’ Roundup

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Large-scale cryptocurrency miner campaign targets Russian users with SilentCryptoMiner

Romance Scammers Target Cryptocurrency Investors with Social Engineering and Fake Exchanges

Happy 15th Anniversary, KrebsOnSecurity!

DMM Bitcoin $308M Bitcoin heist linked to North Korea

North Korean Hacking Group Sapphire Sleet Employs Social Engineering to Steal Cryptocurrency

MailChimp Suffers Data Breach in Latest Social Engineering Attack

Water Labbu Abuses Malicious DApps to Steal Cryptocurrency

Crooks social-engineered GoDaddy staff to take over crypto-biz domains

U.S. Indicts North Korean Hackers in Theft of $200 Million

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

Deceptive Google Meet Invites Lures Users Into Malware Scams

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Mastermind: Social Engineering, BEC Attacks, Millions in Cash and Crypto

When Low-Tech Hacks Cause High-Impact Breaches

Coinbase breached by social engineers, employee data stolen

North Korea steals $400m cryptocurrency through Cyber Attacks

Node.js malvertising campaign targets crypto users

Cinobi Banking Trojan Targets Cryptocurrency Exchange Users via Malvertising

The Original APT: Advanced Persistent Teenagers

Feds Break Up Major SIM-Hijacking Ring

Crazy Evil gang runs over 10 highly specialized social media scams

EDR-as-a-Service makes the headlines in the cybercrime landscape

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Voice Phishers Targeting Corporate VPNs

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

The Link Between Ransomware and Cryptocurrency

North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

Social Engineering Tactics: Sympathy and Assistance Themes

Social Engineering Tactics: Sympathy and Assistance Themes

North Korea Targets DeFi and Crypto Companies with Advanced Social Engineering Attacks

Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware

North Korean Lazarus APT group targets blockchain tech companies

Lazarus Hackers Make Use of Fraudulent Crypto Apps, US Warns

3 Ways to Keep Your Cryptocurrency Safe

The BlueNoroff cryptocurrency hunt is still on

Stay Connected