coindesk.com
The victim of an email-based cyberattack, cross-chain protocol deBridge Finance says its investigation shows the action likely came from the North Korea-associated Lazarus Group.
The attack took the form of an email address spoofing that of deBridge co-founder Alex Smirnov. Though most employees reported the suspicious email, one downloaded and opened the associated file.
The company's probe of the hack shows a similar attack vector to those noticed in other cyberattacks by North Korea's Lazarus Group, said Smirnov in a lengthy Twitter thread.
"PSA for all teams in Web3," wrote Smirnov, "this campaign is likely widespread."
Read more: US Officials Tie North Korea’s ‘Lazarus’ Hackers to $625M Crypto Theft