ioc[.]one - OSINT Cyber Threat Intelligence Database

Phishing the “Tech Savvy”: Threat Actors who Target Cryptocurrency Wallets and Networks

Tags

country:	North Korea Georgia United States Of America
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Exploits - T1587.004 Exploits - T1588.005 Phishing - T1660 Phishing - T1566 Social Media - T1593.001 Social Media Accounts - T1585.001 Social Media Accounts - T1586.001 Software - T1592.002 Vulnerabilities - T1588.006 Browser Extensions - T1176

Show in Graph

Common Information

Type	Value
UUID	0c95497d-5e66-4510-999e-1e46c7bf7fcb
Fingerprint	b13419d1ae03d789
Analysis status	DONE
Considered CTI value	1
Text language
Published	Nov. 20, 2024, 2:22 p.m.
Added to db	Nov. 20, 2024, 3:33 p.m.
Last updated	Nov. 20, 2024, 3:34 p.m.
Headline	Phishing the “Tech Savvy”: Threat Actors who Target Cryptocurrency Wallets and Networks
Title	Phishing the “Tech Savvy”: Threat Actors who Target Cryptocurrency Wallets and Networks
Detected Hints/Tags/Attributes	67/3/19

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@rebekahseow99/phishing-the-tech-savvy-threat-actors-who-target-cryptocurrency-wallets-and-networks-c2b1ad1700f1?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	6		tidyme.io
Details	Domain	4		peerme.io
Details	Domain	102		www.group-ib.com
Details	Domain	404		securelist.com
Details	Domain	1		talk.harmony.one
Details	Domain	48		go.recordedfuture.com
Details	Domain	168		www.ic3.gov
Details	File	2		cta-2024-0917.pdf
Details	Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development)	25		DEV-0139
Details	Url	4		https://www.microsoft.com/en-us/security/blog/2022/12/06/dev-0139-launches-targeted-attacks-against-the-cryptocurrency-industry
Details	Url	1		https://www.justice.gov/opa/pr/justice-department-announces-court-authorized-action-disrupt-illicit-revenue-generation
Details	Url	1		https://www.bleepingcomputer.com/news/security/north-korean-hackers-target-crypto-experts-with-fake-coinbase-job-offers
Details	Url	2		https://www.group-ib.com/blog/stealthy-attributes-of-apt-lazarus
Details	Url	2		https://securelist.com/lazarus-apt-steals-crypto-with-a-tank-game/114282
Details	Url	1		https://talk.harmony.one/t/summary-of-the-horizon-bridge-incident/20990
Details	Url	1		https://www.coindesk.com/policy/2022/04/14/us-officials-tie-north-korean-hacker-group-to-axies-ronin-exploit
Details	Url	2		https://go.recordedfuture.com/hubfs/reports/cta-2024-0917.pdf
Details	Url	1		https://www.ic3.gov/psa/2023/psa230804
Details	Url	1		https://www.bleepingcomputer.com/news/security/bluenoroff-hackers-steal-crypto-using-fake-metamask-extension