According to a security firm specializing in cybersecurity, North Korean hackers created a fake crypto exchange that infects computer users’ internet-connected devices with malware (Trojan). This cryptocurrency exchange, run by North Korean hackers, can access sensitive networks to steal users’ crypto assets.
This claim was shared with the public by Volexity. Among the supporters of the claim is a software company that aims to protect your computers from malware such as Malwarebytes.
In a blog post that Volexity talked about, it was stated that the fake crypto exchange infected with the Trojan is the plan of the Lazarus group, which is thought to be based in Pyongyang. It was also stated that this notorious hacker group launched the fake cryptocurrency exchange in June 2022.
The crypto trading platform infected with a Trojan and thought to be in the hands of the Lazarus group is called BloxHolder. While this platform says it has in-house trading automation solutions and fully reliable crypto trading bots, this is certainly not the case, according to Volexity.
According to Volexity’s claims, BloxHolder is a clone of HassOnline, a real crypto trading platform. In fact, Volexity is not wrong in this claim. Because BloxHolder and HassOnline used the same website examples, they also produced the same website descriptions word for word.
According to the statement of security experts, AppleJeus, a type of Trojan first identified in 2018, collects information about all infected systems without permission. This information includes computers’ addresses, names, and operating systems.