Social engineering koji je doveo do Axie Infinity haka od 540 miliona $

https://www.theblock.co/post/156038/how-a-fake-job... link-img
avatar

Ronin, the Ethereum-linked sidechain that underpins play-to-earn game Axie Infinity, lost $540 million in crypto to an exploit in March. While the US government later tied the incident to North Korean hacking group Lazarus, full details of how the exploit was carried out have not been disclosed.

Axie Infinity was huge. At its peak, workers in Southeast Asia were even able to earn a living through the play-to-earn game. It boasted 2.7 million daily active users and $214 million in weekly trading volume for its in-game NFTs in November last year — although both numbers have since plummeted.

Earlier this year, staff at Axie Infinity developer Sky Mavis were approached by people purporting to represent the fake company and encouraged to apply for jobs, according to the people familiar with the matter. One source added that the approaches were made through the professional networking site LinkedIn.

After what one source described as multiple rounds of interviews, a Sky Mavis engineer was offered a job with an extremely generous compensation package.

The fake “offer” was delivered in the form of a PDF document, which the engineer downloaded — allowing spyware to infiltrate Ronin’s systems.

2

DISKUSIJA

avatar
Anon
✚ pre 146 dana

Ovaj slučaj je odličan primer na kom nivou je svest o sajber bezbednosti u IT-u i da smo svi vrlo ranjivi, da je dovoljno samo jedna žrtva da se nađe i da ako napad bude uspešan, da može da dođe da katastrofe.

Linkedin je baš odličan izvor informacija za ovakve vrste napada :)

1

ULOGUJ SE I DODAJ KOMENTAR


Registruj ili prijavi.

VIDI POPULARNE POSTOVE


4
avatar Stefan pre 15 sati
3
avatar Ivan pre 4 dana
6
avatar Nevenka pre 4 dana
3
avatar Vukašin pre 4 dana
1
avatar Ivana pre 6 dana
8
avatar Strahinja pre 11 dana
5
5
avatar Nevenka pre 17 dana
3
avatar Vukašin pre 17 dana