WASHINGTON : A North Korean government-backed hacking group penetrated an American IT management company and used it as a springboard to target an unknown number of cryptocurrency companies, according to two sources familiar with the matter.
The hack shows how North Korean cyber spies, once content with going after crypto companies one at a time, are now tackling companies that can give them access to multiple sources of bitcoin and other digital currencies. Cybersecurity firm CrowdStrike Holdings, which is working with JumpCloud to investigate the breach, confirmed that"Labyrinth Chollima" - the name it gives to a particular squad of North Korean hackers - was behind the breach.
“North Korea in my opinion is really stepping up their game,” said Hegel, who works for U.S. firm SentinelOne.