Small Crypto Exchanges ‘Low-hanging Fruit’ for North Korean Hackers

Exchange Hack North Korea
Last updated:
Author
Author
Tim Alper
About Author

Tim Alper is a British journalist and features writer who has worked at Cryptonews.com since 2018. He has written for media outlets such as the BBC, the Guardian, and Chosun Ilbo. He has also worked...

Last updated:
Why Trust Cryptonews
Cryptonews has covered the cryptocurrency industry topics since 2017, aiming to provide informative insights to our readers. Our journalists and analysts have extensive experience in market analysis and blockchain technologies. We strive to maintain high editorial standards, focusing on factual accuracy and balanced reporting across all areas - from cryptocurrencies and blockchain projects to industry events, products, and technological developments. Our ongoing presence in the industry reflects our commitment to delivering relevant information in the evolving world of digital assets. Read more about Cryptonews

A South Korean security expert says he is “unsurprised” by allegations that hackers from the North have developed a so-called “fake crypto app” that allows them to seize control of computers. The expert says Pyongyang cyber-criminals are becoming more “technologically adroit” in their methods of stealing cryptocurrencies and targeting crypto traders.

Source: iStock/stuartmiles99

Seoul-based cybersecurity consultant Kim Yo-seb told Cryptonews.com,

“This sort of thing is right up their street. The North’s hackers have been sending out cryptojacking malware and ransomware in email links and attachments – primarily to South Korean users – for years. I suppose that developing fake cryptocurrency apps for the wider world is just the next logical step. I wouldn’t be shocked to learn that they are planning a new cryptocurrency-related raid that is yet more technologically adroit.”

A recent blog post from Patrick Wardle, an Apple security specialist and the principal security researcher at Jamf, claimed that the notorious Lazarus hacker group of Pyongyang has created a fake company named JMT Trading, replete with a legitimate-looking website.

The “fake company” then created what it claimed was an open-source cryptocurrency trading app for Apple computers, and shared it on Github. But Wardle claims that the code in fact contains malware that gives hackers unrestricted access to Mac devices.

Wardle told Forbes that the fake company could “go a step further by contacting administrators and users of cryptocurrency exchanges, asking them to test and review their new app.” If they are successful, said Wardle, they could win the confidence of an “official cryptocurrency vendor and start infecting targets.”

Kim told Cryptonews.com,

“Most smaller crypto exchanges have very low levels of security. They are low-hanging fruit for professional hackers like these.”

The North has made no secret of its fast-developing cryptocurrency plans – with recent claims that it is working on a token of its own, as well as exchanges and wallet services.

More Articles

Blockchain News
MEXC Unveils $30M IgniteX Fund: 5-Year Web3 Talent Rush with Korea University
Tanzeel Akhtar
Tanzeel Akhtar
2025-04-17 15:56:19
Press Releases
IXFI Launches Public Sale for Its Native Token and Expands Crypto Services
2025-04-17 15:50:00
Crypto News in numbers
editors
Authors List + 66 More
2M+
Active Monthly Users Around the World
250+
Guides and Reviews Articles
8
Years on the Market
70
International Team Authors