Acquista cryptoMercatiSpotFuturesUSOILEarnCentro eventi
Altro
Gold vs Crypto
The post North Korea Now Targets Entire Blockchains Like Ethereum appeared on BitcoinEthereumNews.com. A new cyber threat is emerging from North Korea as its state-backed hackers experiment with embedding malicious code directly into blockchain networks. Google’s Threat Intelligence Group (GTIG) reported on October 17 that the technique, called EtherHiding, marks a new evolution in how hackers hide, distribute, and control malware across decentralized systems. Sponsored Sponsored What is EtherHiding? GTIG explained that EtherHiding allows attackers to weaponize smart contracts and public blockchains like Ethereum and BNB Smart Chain by using them to store malicious payloads. Once a piece of code is uploaded to these decentralized ledgers, removing or blocking it becomes nearly impossible due to their immutable nature. “Although smart contracts offer innovative ways to build decentralized applications, their unchangeable nature is leveraged in EtherHiding to host and serve malicious code in a manner that cannot be easily blocked,” GTIG wrote. In practice, the hackers compromise legitimate WordPress websites, often by exploiting unpatched vulnerabilities or stolen credentials. After gaining access, they insert a few lines of JavaScript—known as a “loader”—into the website’s code. When a visitor opens the infected page, the loader quietly connects to the blockchain and retrieves malware from a remote server. EtherHiding on BNB Chain and Ethereum. Source: Google Threat Intelligence Group GTIG pointed out that this attack often leaves no visible transaction trail and requires little to no fees because it happens off-chain. This, in essence, allows the attackers to operate undetected. Sponsored Sponsored Notably, GTIG traced the first instance of EtherHiding to September 2023, when it appeared in a campaign known as CLEARFAKE, which tricked users with fake browser update prompts. How to Prevent the Attack Cybersecurity researchers say this tactic signals a shift in North Korea’s digital strategy from merely stealing cryptocurrency to using blockchain itself as a stealth weapon. “EtherHiding represents a shift toward next-generation bulletproof hosting, where… The post North Korea Now Targets Entire Blockchains Like Ethereum appeared on BitcoinEthereumNews.com. A new cyber threat is emerging from North Korea as its state-backed hackers experiment with embedding malicious code directly into blockchain networks. Google’s Threat Intelligence Group (GTIG) reported on October 17 that the technique, called EtherHiding, marks a new evolution in how hackers hide, distribute, and control malware across decentralized systems. Sponsored Sponsored What is EtherHiding? GTIG explained that EtherHiding allows attackers to weaponize smart contracts and public blockchains like Ethereum and BNB Smart Chain by using them to store malicious payloads. Once a piece of code is uploaded to these decentralized ledgers, removing or blocking it becomes nearly impossible due to their immutable nature. “Although smart contracts offer innovative ways to build decentralized applications, their unchangeable nature is leveraged in EtherHiding to host and serve malicious code in a manner that cannot be easily blocked,” GTIG wrote. In practice, the hackers compromise legitimate WordPress websites, often by exploiting unpatched vulnerabilities or stolen credentials. After gaining access, they insert a few lines of JavaScript—known as a “loader”—into the website’s code. When a visitor opens the infected page, the loader quietly connects to the blockchain and retrieves malware from a remote server. EtherHiding on BNB Chain and Ethereum. Source: Google Threat Intelligence Group GTIG pointed out that this attack often leaves no visible transaction trail and requires little to no fees because it happens off-chain. This, in essence, allows the attackers to operate undetected. Sponsored Sponsored Notably, GTIG traced the first instance of EtherHiding to September 2023, when it appeared in a campaign known as CLEARFAKE, which tricked users with fake browser update prompts. How to Prevent the Attack Cybersecurity researchers say this tactic signals a shift in North Korea’s digital strategy from merely stealing cryptocurrency to using blockchain itself as a stealth weapon. “EtherHiding represents a shift toward next-generation bulletproof hosting, where…

North Korea Now Targets Entire Blockchains Like Ethereum

Autore: BitcoinEthereumNews
Fonte: BitcoinEthereumNews
2025/10/19 04:25
2 min di lettura
Wink
LIKE$0,00167-1,18%
CyberConnect
CYBER$0,5284+0,59%
Smart Blockchain
SMART$0,004161-4,49%
Per feedback o dubbi su questo contenuto, contattateci all'indirizzo crypto.news@mexc.com.

A new cyber threat is emerging from North Korea as its state-backed hackers experiment with embedding malicious code directly into blockchain networks.

Google’s Threat Intelligence Group (GTIG) reported on October 17 that the technique, called EtherHiding, marks a new evolution in how hackers hide, distribute, and control malware across decentralized systems.

Sponsored

Sponsored

What is EtherHiding?

GTIG explained that EtherHiding allows attackers to weaponize smart contracts and public blockchains like Ethereum and BNB Smart Chain by using them to store malicious payloads.

Once a piece of code is uploaded to these decentralized ledgers, removing or blocking it becomes nearly impossible due to their immutable nature.

In practice, the hackers compromise legitimate WordPress websites, often by exploiting unpatched vulnerabilities or stolen credentials.

After gaining access, they insert a few lines of JavaScript—known as a “loader”—into the website’s code. When a visitor opens the infected page, the loader quietly connects to the blockchain and retrieves malware from a remote server.

EtherHiding on BNB Chain and Ethereum. Source: Google Threat Intelligence Group

GTIG pointed out that this attack often leaves no visible transaction trail and requires little to no fees because it happens off-chain. This, in essence, allows the attackers to operate undetected.

Sponsored

Sponsored

Notably, GTIG traced the first instance of EtherHiding to September 2023, when it appeared in a campaign known as CLEARFAKE, which tricked users with fake browser update prompts.

How to Prevent the Attack

Cybersecurity researchers say this tactic signals a shift in North Korea’s digital strategy from merely stealing cryptocurrency to using blockchain itself as a stealth weapon.

John Scott-Railton, a senior researcher at Citizen Lab, described EtherHiding as an “early-stage experiment.” He warned that combining it with AI-driven automation could make future attacks much harder to detect.

This new attack vector could have severe implications for the crypto industry, considering North Korean attackers are significantly prolific.

Data from TRM Labs shows that North Korean-linked groups have already stolen more than $1.5 billion in crypto assets this year alone. Investigators believe those funds help finance Pyongyang’s military programs and efforts to evade international sanctions.

Given this, GTIG advised crypto users to reduce their risk by blocking suspicious downloads and restricting unauthorized web scripts. The group also urged security researchers to identify and label malicious code embedded within blockchain networks.

Source: https://beincrypto.com/north-korea-hackers-embed-malware-in-ethereum/

Opportunità di mercato
Logo Wink
Valore Wink (LIKE)
$0,001671
$0,001671$0,001671
-0,94%
USD
Grafico dei prezzi in tempo reale di Wink (LIKE)
Disclaimer: gli articoli ripubblicati su questo sito provengono da piattaforme pubbliche e sono forniti esclusivamente a scopo informativo. Non riflettono necessariamente le opinioni di MEXC. Tutti i diritti rimangono agli autori originali. Se ritieni che un contenuto violi i diritti di terze parti, contatta crypto.news@mexc.com per la rimozione. MEXC non fornisce alcuna garanzia in merito all'accuratezza, completezza o tempestività del contenuto e non è responsabile per eventuali azioni intraprese sulla base delle informazioni fornite. Il contenuto non costituisce consulenza finanziaria, legale o professionale di altro tipo, né deve essere considerato una raccomandazione o un'approvazione da parte di MEXC.

Potrebbe anche piacerti

Red state moves to end divorce roadblock that keeps women stuck with abusers

Red state moves to end divorce roadblock that keeps women stuck with abusers

The Missouri Senate unanimously approved legislation Tuesday clarifying that pregnant women can get divorced, making it the first non-budget bill to be sent to
Condividi
Rawstory2026/03/11 09:28
MAXI DOGE Holders Diversify into $GGs for Fast-Growth 2025 Crypto Presale Opportunities

MAXI DOGE Holders Diversify into $GGs for Fast-Growth 2025 Crypto Presale Opportunities

Presale crypto tokens have become some of the most active areas in Web3, offering early access to projects that blend culture, finance, and technology. Investors are constantly searching for the best crypto presale to buy right now, comparing new token presales across different niches. MAXI DOGE has gained attention for its meme-driven energy, but early [...] The post MAXI DOGE Holders Diversify into $GGs for Fast-Growth 2025 Crypto Presale Opportunities appeared first on Blockonomi.
Condividi
Blockonomi2025/09/18 00:00
Strategic Petroleum Reserves: IEA Proposes Unprecedented 182M+ Barrel Release to Stabilize Volatile Oil Markets

Strategic Petroleum Reserves: IEA Proposes Unprecedented 182M+ Barrel Release to Stabilize Volatile Oil Markets

BitcoinWorld Strategic Petroleum Reserves: IEA Proposes Unprecedented 182M+ Barrel Release to Stabilize Volatile Oil Markets PARIS, April 8, 2025 — The International
Condividi
bitcoinworld2026/03/11 08:55