Book a Demo
New: Threat Exposure Validation Impact Report 2025
Learn More
Meet the team at Gartner Security & Risk Management Summit
Book a Meeting
Join our Summer Webinar Series on Threat Exposure Validation
Register Now
Meet the team at Infosecurity Europe 2025
Book a Meeting
Book a Demo

The BlueNoroff cryptocurrency hunt is still on

January 26, 2022

Kaspersky have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group's illegal income. These attackers even took the long route of building fake cryptocurrency software development companies in order to trick their victims into installing legitimate-looking applications that eventually receive backdoored updates. Kaspersky reported about the first variant of such software back in 2018, but there were many other samples to be found, which was later reported by the US CISA (Cybersecurity and Infrastructure Security Agency) in 2021.

Featured Resources

image
blog

Exploiting BadSuccessor: Cymulate Launches New Advanced Breach Simulation Scenario 

At Cymulate, our mission is to stay ahead of evolving threats by transforming cutting-edge research into real-world security testing tools.  

Read More
Cymulate Article
blog

11 Email Threats Your Organization Needs to Know 

Email remains the primary entry point for cyberattacks. From nation-state actors to low-level cybercriminals, adversaries continually exploit the ubiquity and

Read More
image
blog

Proactive Security in Action: What Real-World Gaps Reveal About Cyber Resilience 

Today’s threat actors move fast, and reactive security is no longer enough. Most breaches have a common root cause: a

Read More