BitMEX thwarted a hack by the Lazarus Group, beginning with a phishing scheme on LinkedIn. Malicious code in a shared GitHub repository aimed to compromise a BitMEX employee. Their security systems exposed logs containing hackers’ real IP addresses and missteps.
The hacked database revealed 37 logs identifying infected machines and locations. Patterns indicated Lazarus operates in organized teams with varied technical skills, supported by operational mistakes that could be exploited further.
Leave a Reply