North Korean Hackers Use Telegram to Steal Cryptocurrencies

1 min reading

As the latest research shows, North Korean hackers have developed a clever way of stealing BTC and other cryptocurrencies through a popular messaging application, Telegram.

A new form of attack

Cybercrime specialists from Kaspersky Labs found out that a famous group of hackers, commonly known as Lazarus, had developed improved, perfidious methods of attacking individuals and companies from around the world. The operation was called AppleJeus. Malware runs in memory, not on hard drives, and because of that it is difficult to be detected. People from Great Britain, China, Russia and Poland are among its victims. The scale of frauds and the amount of the stolen funds were not given, however.

Cybercriminals lure their victims in a rather nondeceptive way as they create fake websites dedicated to cryptocurrencies, as well as channels on Telegram. Malicious links posted on websites and on groups infect the target device, providing attackers with access to all user data. As a result of this they are able to, for example, steal their private keys.


It is worth adding that the United Nations reported lst year that Korean hackers had stolen about $2 billion from financial institutions and cryptocurrency exchanges. The most famous intrusions include those on Bithumb, Youbit and Nicehash.

The Telegram is not responsible!

The Telegram's spokesman urged users not to panic because Malware does not reflect the breaches of security of this application. What is more, there is no difference between this particular malware and those that may be found on websites or thos that may be infecting through emails.

Moreover, users can evade these unpleasant consequences by acting approprietly online. That is: downloading files from trusted sources only and using renown anti-virus programs.

In one of the cases presented by Kaspersky Lab, the user downloaded the malware through Telegram, but the application itself was not affected. After being infected, the attackers gained access to the victim's device. The cybercriminals company has found a great number of fake cryptocurrency websites. It turns out that most of them were created using free templates.