DMM Bitcoin $300M Hack Traced to North Korea: Employee Email Breach Exposed

crime

DMM Bitcoin’s $300M theft was linked to a North Korean cyberattack after a subcontractor employee clicked a malicious email link.

1[chicken] (yard) [eu].Dec. 24, 2024 (Tue) 07:48:22.64ID:klVIchb20●
DMM Bitcoin leak was a “North Korean attack” contacted via SNS, identified as Japan and the US

DMMビットコイン流出は「北朝鮮の攻撃」 SNSで接触、日米特定:朝日新聞デジタル
暗号資産交換業DMMビットコイン(東京)から今年5月、約482億円相当のビットコインが流出した事件について、警察庁と米連邦捜査局(FBI)は日本時間24日、北朝鮮の軍傘下の組織による窃取と特定したと…
3Anonymous @ Teary-eyed. (sb-android) [nl].Dec. 24, 2024 (Tue) 07:49:15.48ID:6KbfWLI90
You’re spreading yourself too thin.
4Anonymous @ Teary-eyed. (Somewhere in Japan) [Nida].Dec. 24, 2024 (Tue) 07:49:58.26ID:GIGQ51Nk0
Are we going to make this employee pay 48 billion yen in compensation?
8Anonymous @ Teary-eyed. (Garden) [Nida].Dec. 24, 2024 (Tue) 07:50:38.77ID:5JvidJIe0
Arakasama reading.
9Anonymous @ Teary-eyed. (mushroom) [us].Dec. 24, 2024 (Tue) 07:51:21.62ID:pC0ILB3Y0
Subcontracted employees are living on pins and needles…
10Anonymous @ Teary-eyed. (Garden) [Nida].Dec. 24, 2024 (Tue) 07:51:59.91ID:5JvidJIe0
It’s a waste to begin with lol.
11Anonymous @ Teary-eyed. (Zipang) [za].Dec. 24, 2024 (Tue) 07:52:00.76ID:3XHrtmek0
Lazarus is the same group behind the Coincheck leak.
12Anonymous @ Teary-eyed. (mushroom) [us].Dec. 24, 2024 (Tue) 07:52:01.06ID:7pRsJ+eb0
He contacted employees of the company “ginco” (Tokyo) on LinkedIn, posing as a recruiter and saying things like, “I’m impressed with your skills.” They sent a URL disguised as a pre-employment test, installed malicious code, and hijacked Ginco’s access permissions to infiltrate the system. On May 31, he allegedly falsified the details of DMM transactions, leaking and stealing the equivalent of approximately 48.2 billion yen. Don’t make him pay for this retardedness.
18Anonymous @ Teary-eyed. (garden) [eu].Dec. 24, 2024 (Tue) 07:54:35.74ID:CQXsWh4A0
>>12
I was thinking about changing jobs, but then I ended up with some incredible achievements.
14Anonymous @ Teary-eyed. (Zipang) [Nu].Dec. 24, 2024 (Tue) 07:53:28.31ID:KkVEe0GW0
Does this mean North Korea has 48.2 billion yen worth of Bitcoin?
15Anonymous @ Teary-eyed. (Aichi Prefecture) [us].Dec. 24, 2024 (Tue) 07:53:46.56ID:ccOqr6aD0
North Korea is really impressive. They can do all of this. When you think about it, Japan is no good.
36Anonymous @ Teary-eyed. (location not on map) [cn].Dec. 24, 2024 (Tue) 07:57:57.94ID:PFVpP0RT0
>>15
The foundation is the technology they brought back from training in Japan or the West. It’s a matter of motivation.
16Anonymous @ Teary-eyed. (mushroom) [us].Dec. 24, 2024 (Tue) 07:54:03.43ID:XYL3ivWn0
The contractor doesn’t have any good staff, so it’s the client’s fault.
17Anonymous @ Teary-eyed. (sb-android) [nl].Dec. 24, 2024 (Tue) 07:54:05.42ID:6KbfWLI90
It seems like the subcontractor company is liable for damages, but they’ll probably go bankrupt anyway, right?
20Anonymous @ Teary-eyed. (Garden) [Nida].Dec. 24, 2024 (Tue) 07:55:26.40ID:5JvidJIe0
It’s a lying machine lol.
21Anonymous @ Teary-eyed. (Hiroshima Prefecture) [Nida]Dec. 24, 2024 (Tue) 07:55:28.11ID:p+Eki5rj0
Maybe this employee was in on it after all.
22Anonymous @ Teary-eyed. (Chiba Prefecture) [gb].Dec. 24, 2024 (Tue) 07:55:36.96ID:E8huhjeb0
Looking at the wiki, it seems to be a mysterious group that targets Russia as well. The attacks are aimed at many different areas, so I guess even those investigating don’t really understand what’s going on.
23Anonymous @ Teary-eyed. (Hyogo Prefecture) [Nida]Dec. 24, 2024 (Tue) 07:55:49.01ID:3GBiAjq70
Isn’t there no way for DMM Bitcoin to prevent this?
27Anonymous @ Teary-eyed. (Chiba Prefecture) [gb].Dec. 24, 2024 (Tue) 07:56:33.97ID:E8huhjeb0
>>23
You can prevent that as much as you want lol.
49Anonymous @ Teary-eyed. (Zipang) [se].Dec. 24, 2024 (Tue) 08:04:20.69ID:T0onCIsO0
>>23
Virtual currencies have a feature called multisig, which means that if multiple signatures are not obtained, money cannot be transferred.
Even if someone’s account (wallet) is compromised, other people can prevent it.
The Financial Services Agency is also asking companies to use multisig, but
DMM Bitcoin seems to have been operating on its own, and multisig was not functioning.
24Anonymous @ Teary-eyed. (SoftBank) [cn].Dec. 24, 2024 (Tue) 07:55:59.42ID:fVnToc2e0
Aren’t cryptocurrencies safe?
25Anonymous @ Teary-eyed. (Mushroom) [bg].Dec. 24, 2024 (Tue) 07:56:16.79ID:4OgAliw90
Japan’s crypto assets are being stolen by the North.
26Anonymous @ Teary-eyed. (Garden) [Nida].Dec. 24, 2024 (Tue) 07:56:34.00ID:5JvidJIe0
Two-faced Britain ←Are they stupid? lol.
30Anonymous @ Teary-eyed. (New Japan) [tw].Dec. 24, 2024 (Tue) 07:56:49.40ID:B4bjeZlr0
Coin dealers have low quality employees, not like those at financial institutions lol.
31Anonymous @ Teary-eyed. (Gifu Prefecture) [us].Dec. 24, 2024 (Tue) 07:56:54.89ID:/zL0qEUj0
This is an example of what happens when you skimp on labor costs in a secure business.
33Anonymous @ Teary-eyed. (Somewhere in Japan) [de].Dec. 24, 2024 (Tue) 07:57:02.03ID:spkiVA7y0
I’m really sorry to say that I’m retiring.
34Anonymous @ Teary-eyed. (Hyogo Prefecture) [us].Dec. 24, 2024 (Tue) 07:57:07.32ID:HKJsbSpC0
Literacy().
35Anonymous @ Teary-eyed. (Garden) [Nida].Dec. 24, 2024 (Tue) 07:57:33.42ID:5JvidJIe0
Hurry up and make a move. please.
39Anonymous @ Teary-eyed. (Garden) [Nida].Dec. 24, 2024 (Tue) 08:00:21.93ID:5JvidJIe0
It seems he still doesn’t understand the system that results in gestures. Reason.
40Anonymous @ Teary-eyed. (sb-android) [in].Dec. 24, 2024 (Tue) 08:00:31.66ID:KOQoS+Bi0
Contract operator work is the lowest level even overseas. Why do you guys think that people who just do what they’re told will be paid the same as managers?
41Anonymous @ Teary-eyed. (Saitama Prefecture) [cn].Dec. 24, 2024 (Tue) 08:00:37.38ID:JVyyhOca0
How can you be so poor with 48.2 billion yen?
42Anonymous @ Teary-eyed. (Mushroom) [Look]Dec. 24, 2024 (Tue) 08:02:13.97ID:Oai1UOlM0
Abolish email, a relic of the past.
43Anonymous @ Teary-eyed. (Zipang) [cn].Dec. 24, 2024 (Tue) 08:02:22.30ID:96zmMJle0
No matter how strong the code is, it’s useless if you just hand it over to a contractor.
51Anonymous @ Teary-eyed. (Chiba Prefecture) [gb].Dec. 24, 2024 (Tue) 08:04:33.82ID:E8huhjeb0
>>43
I think it was wise to judge that the internal side was more dangerous
I wonder if it was the external side that would do it.
44Anonymous @ Teary-eyed. (Chiba Prefecture) [gb].Dec. 24, 2024 (Tue) 08:02:56.37ID:E8huhjeb0
But looking at the article, it’s not a DMM-related company, so it’s 100% their fault. If they make a profit, they can steal disclaimers as much as they want, so I think they’ll go bankrupt. Will these shareholders be able to save them? Would it be better to let someone else buy them?
The 48.2 billion yen leak of Bitcoin from DMM was revealed to be the work of North Korea an employee of a subcontractor opened a URL in an email and the company was hacked.-34
45Anonymous @ Teary-eyed. (Aichi Prefecture) [eu].Dec. 24, 2024 (Tue) 08:03:47.04ID:Ix+zZVjA0
I would understand if you could be invaded just by opening an email, or if you clicked on a URL or opened a file.
54Anonymous @ Teary-eyed. (Myo) [Look].Dec. 24, 2024 (Tue) 08:06:10.46ID:F78EDYvM0
>>45
They sent a URL pretending to be a pre-employment test, installed a malicious program, and hijacked the access privileges to infiltrate Ginco’s system.
48Anonymous @ Teary-eyed. (Hokkaido) [us].Dec. 24, 2024 (Tue) 08:04:09.97ID:fLPCdcRX0
In the first place, DMM’s management of its crypto assets was sloppy, which is why they were exploited.
72Anonymous @ Teary-eyed. (garden) [us].Dec. 24, 2024 (Tue) 08:14:55.34ID:CgU9Ex3Y0
>>48
It was probably a bad idea to outsource to a company with poor management.
I’m sure they had some sort of manual prepared for the outsourcing, but it’s possible that they didn’t check enough to make sure it was followed properly.
56Anonymous @ Teary-eyed. (mushroom) [us].Dec. 24, 2024 (Tue) 08:07:11.32ID:MZy3p/V80
Did they commission something this risky?
Reference: https://hayabusa9.5ch.net/test/read.cgi/news/1734994102

Other languages: DMMビットコイン482億円流出は北朝鮮の犯行と判明委託先の従業員がメールのURLを開いて侵入される, Se reveló que la filtración de 48,2 mil millones de yenes en DMM Bitcoin era obra de Corea del Norte. La intrusión se produjo cuando un empleado de la empresa subcontratada abrió una URL de correo electrónico.

Comments

Copied title and URL