Share this article
North Korea Hackers Likely Exploit Cloud Mining to Launder Stolen Crypto, Research Shows
The APT43 group steals crypto to fund operations and launders it through cloud mining services.
Updated Mar 29, 2023, 5:00 p.m. Published Mar 28, 2023, 3:00 p.m.
Make us preferred on Google
North Korean hacker group APT43 probably uses cloud mining services to launder stolen crypto, according to research by Google-owned cybersecurity firm Mandiant.
Cloud mining services own and operate infrastructure and rent out hashrate to users. Hashrate is a measure of the total amount of computer processing power to secure a cryptocurrency. APT43 uses stolen cryptocurrency to pay for these services and receives crypto not associated with the crime to wallets of its choice, according to the report released on Tuesday.
STORY CONTINUES BELOW
The group is "moderately sophisticated" and supports the strategic and nuclear objectives of the North Korean regime, according to Mandiant. It uses the proceeds from cybercrime to fund its operations, which target South Korean and U.S. government organizations, academics and think tanks focused on the geopolitics of the Korean peninsula, the report said.
To acquire the crypto, APT43 steals credentials, often by phishing attacks. That is, it creates legitimate-looking websites – for example, a site masquerading as a crypto exchange – and persuades unsuspecting users to reveal personal information.
North Korean hackers have been increasingly including crypto in their operations, often in high-profile digital heists like the $100 million Horizon Bridge theft, according to the FBI. Authorities around the world, particularly in the U.S. and South Korea, are trying to combat the threat.
Mandiant was acquired by Google and integrated into its cloud service in September 2022.
Read more: FBI: North Korean Hackers Behind $100M Horizon Bridge Theft
More For You
Pudgy Penguins is building a multi-vertical consumer IP platform — combining phygital products, games, NFTs and PENGU to monetize culture at scale.
What to know:
Pudgy Penguins is emerging as one of the strongest NFT-native brands of this cycle, shifting from speculative “digital luxury goods” into a multi-vertical consumer IP platform. Its strategy is to acquire users through mainstream channels first; toys, retail partnerships and viral media, then onboard them into Web3 through games, NFTs and the PENGU token.
The ecosystem now spans phygital products (> $13M retail sales and >1M units sold), games and experiences (Pudgy Party surpassed 500k downloads in two weeks), and a widely distributed token (airdropped to 6M+ wallets). While the market is currently pricing Pudgy at a premium relative to traditional IP peers, sustained success depends on execution across retail expansion, gaming adoption and deeper token utility.
More For You
Peter Thiel and Galaxy-backed Citrea wants to turn idle bitcoin into a high-speed bank account
Founders Fund and Galaxy-backed Citrea is aiming to unlock Bitcoin-denominated credit markets with a new mainnet and a Treasury-backed stablecoin designed for USD settlement.
What to know:
- Citrea has debuted its mainnet, enabling Bitcoin-backed lending, trading and structured products directly tied to the Bitcoin network.
- The platform introduced ctUSD, a Treasury-backed stablecoin issued by MoonPay and designed to align with forthcoming U.S. stablecoin rules.
- Citrea says the rollout aims to mobilize idle BTC and provide an institutional-grade settlement layer for Bitcoin-based capital markets.
Top Stories
