The popularity of cryptocurrency has skyrocketed over the last few years and its use is no longer limited to technology enthusiasts. Companies have joined this new frontier and are using digital assets for investment and transactional purposes. The growing success of digital assets like Bitcoin and Ethereum has ushered in a new era for cybercrime with Cryptocurrency firms being the target of advanced attacks.
A financial services firm hired Unit 42 to investigate an attack by the North Korea-backed Lazarus Group, which resulted in several hundred thousand dollars worth of crypto funds being stolen. Check out the sequence of events that led to the currency theft:
If an EDR/XDR agent been deployed on the user's personal device, the threat actor would not have been able to run executable code that allowed compromise and lateral movement. If your company is part of the Financial Services industry, adopting XDR technology should be highly considered. XDR can provide the necessary endpoint-based malware, exploit, and attack prevention to prevent monetary loss and enforce customer confidentiality. As threat actors become more advanced and incentivized it is important to implement Defense in Depth.