Is the N. Korean hacking group Lazarus behind 31 attacks this year?
Click to start listening
Synopsis
A recent report reveals that the North Korean hacking group Lazarus is linked to 31 cyberattacks this past year, raising concerns about their involvement in a massive cryptocurrency breach at Upbit. As cybersecurity threats escalate, understanding their methods is crucial.
Key Takeaways
- Lazarus has been linked to 31 cyberattacks in the past year.
- The group is suspected of a recent breach at Upbit involving 30.6 million dollars in cryptocurrency.
- Authorities plan to investigate the incident further.
- The methods used in current attacks are similar to past incidents.
- Cybersecurity measures need to be strengthened.
Seoul, Nov 30 (NationPress) The North Korean hacking organization Lazarus is believed to have orchestrated a minimum of 31 cyberattacks over the previous year, according to a report released on Sunday. This comes amidst increasing suspicions that the group was involved in a recent substantial cryptocurrency breach at the South Korean crypto exchange Upbit.
Local cybersecurity firm AhnLab Inc. conducted the analysis in its recent report, highlighting that Lazarus has emerged as the leading advanced persistent threat (APT) group with 31 recorded incidents between October 2024 and September this year.
Another North Korean-affiliated group, Kimsuky, trailed closely with 27 incidents, as per the same data.
When analyzing by country, North Korea was responsible for 86 hacking events, followed by China with 27, Russia and India each at 18, and Pakistan with 17.
AhnLab remarked that the true number of attacks may be greater than reported, given the advanced techniques utilized by APT groups.
The report surfaces amid allegations that Lazarus was behind a recent breach that siphoned off approximately 45 billion won (around US$30.6 million) in cryptocurrency from Upbit last week.
Authorities noted that the methods employed in this latest theft mirrored those used in a 2019 incident where the group allegedly stole 58 billion won worth of Ethereum from the same exchange.
Lazarus is also suspected of being responsible for another breach that resulted in the loss of around 45 billion won ($30.6 million) in cryptocurrency from South Korea's largest crypto exchange, Upbit.
Government and industry sources indicate that authorities plan to conduct an on-site investigation at the crypto exchange, suspecting that Lazarus is behind the hacking incident.
Dunamu, the operator of Upbit, confirmed on Thursday that it identified a transfer of 44.5 billion won worth of Solana-associated assets to an unauthorized wallet address, assuring users that it would cover the full amount with its assets.
The hacking group was previously suspected of stealing 58 billion won worth of Ethereum from Upbit in 2019.
Authorities indicated that the techniques used in the recent incident were similar to those from the 2019 theft.
Point of View
It is crucial to approach this issue with a focus on national security and the implications of cyber threats. The increasing activities of groups like Lazarus highlight the urgency for robust cybersecurity measures. Our nation must remain vigilant and proactive in safeguarding our digital infrastructure against these sophisticated attacks.
NationPress
30/11/2025
Frequently Asked Questions
What is the Lazarus hacking group?
Lazarus is a North Korean hacking organization known for its involvement in numerous cyberattacks, including high-profile thefts and breaches.
How many attacks has Lazarus conducted recently?
According to recent reports, Lazarus is suspected of being behind at least 31 cyberattacks over the past year.
What recent incident is Lazarus linked to?
Lazarus is believed to be responsible for a significant cryptocurrency breach at South Korea's Upbit, resulting in the loss of approximately 30.6 million dollars.
What were the methods used in the Upbit breach?
Authorities noted that the techniques employed in the Upbit breach were similar to those used in a 2019 attack where Ethereum was stolen.
What can be done to prevent such attacks?
Enhancing cybersecurity measures, increasing awareness, and conducting thorough investigations are crucial steps to combat threats from hacking groups like Lazarus.
