29-5-2025 – The notorious North Korean hacking syndicate Lazarus has redirected its predatory gaze towards individual investors, amassing illicit gains exceeding $5.2 million through a meticulously orchestrated malware assault on May 24. The pilfered assets, siphoned from a diverse array of digital wallets—including exchange accounts, multi-signature setups, and external holdings—mark a chilling new chapter in the group’s operations. Blockchain sleuth ZackXBT, renowned for unmasking digital malfeasance, traced approximately 1,000 ETH of the stolen cryptocurrency as it was funnelled through Tornado Cash, a mixer designed to obscure the trail of illicit funds.
Cybersecurity specialists are sounding the alarm, urging private investors to fortify their defences against such audacious attacks. Recommended safeguards include storing substantial assets in hardware wallets, activating two-factor authentication, diligently applying software updates, exercising vigilance against dubious links, and routinely scrutinising transaction histories.
