A trio of federal agencies on Monday issued a joint advisory on the growing risk of cyber threats involving cryptocurrency from a North Korean group, The Hill reported. The FBI, the Cybersecurity and Infrastructure Security Agency, and the Department of the Treasury highlighted the tactics used by a North Korean state-sponsored advanced persistent threat (APT) group. The agencies said the APT group targeted various organizations in the cryptocurrency industry such as play-to-earn crypto video games, crypto trading companies and individual holders of valuable non-fungible tokens, often referred to as NFTs. The cyber actors used a variety of communication platforms to target victims, encouraging them to download trojanized cryptocurrency applications through their devices, the agencies said. The group used the fake applications to gain access to the user’s network, stealing private keys or exploiting other security gaps, according to the advisory.
