CEX successfully prevented a suspected Lazarus attack, identifying its IP Address and major security vulnerabilities.

[CEX Successfully Blocks Suspected Lazarus Attack, Finds IP Address and Major Security Breach] CEX said in a Friday announcement that its security team successfully blocked a social engineering attack launched by the Lazarus Group, a hacking group linked to North Korea. "Recently, an employee was contacted via LinkedIn and offered to collaborate on an NFT marketplace Web3 project with the goal of inducing victims to run the project's code containing malicious code on their computers," CEX said. The employee promptly identified the risk and reported it, and the security team intervened to investigate and discovered that the attack attempted to reuse malicious code called "BeaverTail". "We found that an 'operational security bug' in the script may have exposed the attacker's 'original IP address'," CEX noted. The team added: "The organization appears to have split into multiple groups with varying skill levels. "They have identified at least 10 accounts that could be used to test or develop malware. CEX added: "This survey shows a stark contrast between the organization's rudimentary phishing strategies and its advanced utilization techniques. ”