2018-10
trade.io reported an October 2018 contained cryptocurrency breach in which 50 million Trade Tokens reserved for its liquidity pool were moved from a hardware wallet and abnormal TIO trading appeared on external exchanges. The company said customer account…
🇨🇭 Switzerland
#Cryptocurrency
#FinancialGain
2018-10
South Korea's Defense Acquisition Program Administration disclosed that 10 internet-connected PCs were compromised in late 2018 after abnormal traffic was identified from agency IP space. Reporting described leaked internal materials, delayed response, an…
🇰🇷 Korea, Republic of
#Government
#DataBreach
#Espionage
2018-10
FASTCash was a DPRK-attributed banking campaign in which HIDDEN COBRA/Lazarus-linked operators compromised payment-switch infrastructure to authorize fraudulent ATM withdrawals by manipulating ISO 8583 transaction responses. Reports describe AIX and later…
ZZZ
#Finance
#FinancialGain
2018-10
Group-IB described an attempted attack on HSBC's Maltese office that was detected and stopped, then linked the activity to the same Lazarus SWIFT-focused cluster behind later thefts from Mexican banks, Banco de Chile, AkBank, and Bank of Valletta. The rep…
🇲🇹 Malta
#Finance
#FinancialGain
2018-10
BankIslami was described in U.S. law-enforcement reporting as a 2018 ATM cash-out theft in Pakistan involving funds from North Korean-perpetrated cyber crime schemes. The linked Justice Department material places the incident alongside DPRK/RGB-linked fin…
🇵🇰 Pakistan
#Finance
#FinancialGain
2018-09
Indodax is referenced in U.S. and UN-linked reporting as one of multiple cryptocurrency entities affected by North Korean cyber-enabled financial theft and laundering activity associated in security reporting with Lazarus/APT38 and Bluenoroff. Later block…
🇮🇩 Indonesia
#Cryptocurrency
#FinancialGain
2018-09
The WaveString case involved Lazarus-linked supply-chain activity around the Coinis cryptocurrency trading platform and the fake software company Celas. Kaspersky reporting described attackers stealing a code-signing certificate and using it to sign malwa…
🇰🇷 Korea, Republic of
#Cryptocurrency
#SupplyChain
2018-09
Zaif, a Japan-based cryptocurrency exchange, reported unauthorized external access to hot-wallet management servers on September 14, 2018, resulting in theft of BTC, MONA, and BCH from customer and exchange assets. Linked reporting describes service suspe…
🇯🇵 Japan
#Cryptocurrency
#FinancialGain
2018-08
Ryuk emerged as a targeted ransomware operation against enterprises, with operators using prior network access, credential collection, lateral movement, and hands-on deployment to encrypt critical systems and disrupt organizations in sectors including gov…
🇺🇸 United States, ZZZ
#FinancialGain
2018-08
Cosmos Bank suffered an August 2018 financial intrusion combining ATM cash-out and SWIFT abuse, with linked reporting describing compromise of ATM/POS switch infrastructure, malicious ISO 8583 libraries, process injection, a parallel malicious switch, and…
🇮🇳 India
#Finance
#ATM
#SWIFT
#FinancialGain
2018-07
Bancor publicly acknowledged a July 2018 security breach, and later blockchain-tracing reporting observed more than 25,000 ETH stolen in the hack moving after months of inactivity through relay-wallet behavior toward exchange destinations. The linked evid…
🇨🇭 Switzerland
#Cryptocurrency
#FinancialGain
2018-07
RSupport disclosed that one internal PC showed signs of malware infection and that a code-signing certificate used for file integrity verification may have been exposed, prompting revocation, replacement, and security-hardening measures with KISA support.…
🇰🇷 Korea, Republic of
#SupplyChain
#Technology
2018-07
UN Panel evidence lists Vietnam among suspected DPRK cyber attacks on financial institutions and records an attempted theft of more than EUR 1 million through fraudulent SWIFT messages reported by Tien Phong Bank. The case is part of the same bank-theft p…
🇻🇳 Viet Nam
#Finance
#FinancialGain
2018-06
Bithumb disclosed a June 2018 cryptocurrency theft initially estimated at about 35 billion KRW, with the exchange covering losses from company reserves while moving customer assets to cold wallets and suspending cryptocurrency and KRW withdrawals during c…
🇰🇷 Korea, Republic of
#Cryptocurrency
#FinancialGain
2018-06
Coinrail reported a June 2018 cryptocurrency exchange hack involving unauthorized withdrawals of several assets, including Pundi X, Aston, and NPER, with linked reporting estimating losses at about 40 billion KRW. The exchange moved roughly 70% of remaini…
🇰🇷 Korea, Republic of
#Cryptocurrency
#FinancialGain