A recent cyber incident shook the US as a sophisticated hacking group, purportedly backed by the North Korean government, targeted an IT company with a sinister motive to attack cryptocurrency businesses, according to Reuters sources.
The victim of this attack was JumpCloud, an IT firm renowned for its identity and access management tools catering to enterprise devices. Although they attributed the breach to a “sophisticated nation-state sponsored threat actor,” they refrained from explicitly pointing fingers at a specific nation.
The hackers executed their plan by infiltrating JumpCloud’s systems last month, intending to steal cryptocurrency. Their main target was the company’s clients who were involved in digital currency operations, creating a severe security threat.
Thankfully, the attack had a limited impact, affecting fewer than five of JumpCloud’s customers, as confirmed by a company spokesperson. Nevertheless, cybersecurity firm CrowdStrike Holdings pinned the blame on “Labyrinth Chollima,” a notorious hacking group affiliated with North Korea. According to CrowdStrike’s Senior Vice President, Adam Meyers, one of the group’s primary objectives is to generate revenue for the North Korean regime.
This attribution was further substantiated by independent researchers, further cementing North Korea’s involvement in the cyber intrusion. Notably, this is not the first time North Korean hackers have launched such attacks, indicating their expertise in “supply chain attacks” and complex hacking techniques, as highlighted by cybersecurity researcher Tom Hegel in conversation with Reuters.
“Their hacking proficiency is on the rise,” Hegel emphasized, showcasing how North Korea is consistently improving its cyber capabilities. Labyrinth Chollima stands out as one of the most prolific hacking groups in North Korea, known for audacious and disruptive cyber intrusions.
Chainalysis, a blockchain analytics firm, disclosed last year that North Korean-linked groups had illicitly acquired approximately $1.7 billion worth of digital currency through several hacks, illustrating the scale and seriousness of the issue.
