Press "Enter" to skip to content

Are Russian Hackers behind Coincheck Hack? Strong Possibilities By New Research

Coincheck heck has again come in the news with the latest updates by the Japanese news website Asahi Shimbun on June 17.

Reportedly, there is a new finding that has been seen by the experts which indicates that it’s not North Korean hackers instead the Russian hackers or Eastern European cybercriminals hacked the Tokyo, Japan-based Coincheck cryptocurrency exchange last year in Jan.

NEM Cryptocurrency and Mt Gox Hack

The biggest embezzlement of 2018, which stunned the entire cryptocurrency community in which approx. 58 billion yen worth of digital assets “NEM (Nem)” or roughly 500 million NEM tokens ($530 million during the count) were stolen from the customer’s account due to the account breach or unauthorized access which the hackers skimmed through the virus-infected software. Allegedly, the cryptocurrency was transferred through a total of nineteen accounts, and enigmatically one of the accounts was found to have no connection with the hacker. The Coincheck theft is possibly bigger than the Mt Gox hack that caused millions of dollars lost on a large scale by a cyberheist and resulting which the former CEO Mark Marie Robert Karpelès dubbed as “MagicalTux” still facing government penalties.

As per the newly available information, a U.S. cybersecurity expert told the Ashahi Shimbun media outlet that two viruses called mokes and netwire have got detected from the Coincheck employee’s PC’s on which experts were researching remotely. Strangely, these viruses are linked with the Russian hackers. The reports also suggested that the aforementioned viruses were sent through an email by the hackers to the victims (employees) which gave the cybercriminals an authority to access the computers and gained the control to operate from a distant place.

It is indicated that in 2011, the Mokes virus was found on a Russian bulletin board and possibly the Russian cyber attackers are deploying it to get the unauthorized control in order to steal the information. Netwire is there in the market for over 12 years.

Earlier, it was signaled by  Kaspersky that Lazarus APT Group which has got the backing from North Korea is behind the several major attacks and are employing PowerShell automated task framework in hacking. However, still, it is a mystery who is the actual connection or the group which is behind these shabby incidences. KoinPost will keep on updating the latest updates linking with the old and the upcoming occurrences.

Tags: Mokes Virus, Netwire Virus, Russian bulletin board, Coincheck Heck, Hackers, Cybersecurity Criminals, U.S. Cybersecurity, Mark Marie Robert Karpelès, MagicalTux, Cybercriminals, NEM, Cryptocurrency Community, Coincheck cryptocurrency exchange, Russian Hackers, North Korean Hackers, Eastern European Cybercriminals, Kaspersky, Lazarus APT Group 

One Comment

Leave a Reply

Your email address will not be published. Required fields are marked *