North Korean hackers target crypto firms with ‘Durian’ malware, Kaspersky confirms

North Korean hackers have once again targeted cryptocurrency firms, this time using a sophisticated malware known as Durian, according to cybersecurity experts at Kaspersky. This latest revelation underscores the ongoing threat posed by cybercriminals to the cryptocurrency industry and highlights the need for robust security measures to protect against such attacks.

Durian, named after the pungent tropical fruit, is a highly advanced malware strain believed to have been developed by the Lazarus Group, a notorious hacking collective with ties to North Korea. The malware is designed to infiltrate the networks of cryptocurrency exchanges and steal sensitive information, including user credentials, private keys, and other valuable data.

Kaspersky researchers have identified multiple instances of Durian being deployed in targeted attacks against cryptocurrency firms in recent months. The malware is typically spread via phishing emails containing malicious attachments or links to fake websites designed to trick victims into downloading and installing the malware on their systems.

Once installed, Durian operates covertly, using a variety of techniques to evade detection and maintain persistence within the victim’s network. It can intercept and exfiltrate sensitive data, log keystrokes, and even take screenshots of the victim’s desktop, allowing hackers to gain unauthorized access to cryptocurrency wallets and other valuable assets.

The use of Durian by North Korean hackers represents a significant escalation in cyber threats against the cryptocurrency industry. The Lazarus Group, believed to be behind the malware, has a long history of targeting cryptocurrency exchanges and financial institutions with sophisticated cyberattacks aimed at stealing funds and sensitive information.

To mitigate the risk of falling victim to such attacks, cryptocurrency firms are advised to implement robust cybersecurity measures, including multi-factor authentication, encryption, network segmentation, and regular security audits. Additionally, users should exercise caution when opening email attachments or clicking on links, especially if they appear suspicious or unsolicited.

By remaining vigilant and implementing proactive security measures, cryptocurrency firms can better protect themselves and their customers against the growing threat posed by cybercriminals and state-sponsored hackers.


Hello there! I'm a 21-year-old university student majoring in Finnish and Korean Language and Literature. I have a deep passion for art and a profound connection to the natural world. My journey through life has been a colorful one, driven by my love for creativity, music, and the wonders of the great outdoors. As a dedicated student, I've already earned a degree in Classic Cantos, a testament to my appreciation for the timeless beauty of classical music. Beyond the classroom, my artistic spirit thrives through my love for painting and drawing. These creative outlets allow me to express my thoughts and emotions, transforming blank canvases into vibrant stories. My interests go far beyond music and art. Singing, playing the piano, and exploring new melodies are integral parts of my life, providing me with both solace and exhilaration. When I'm not immersed in the world of art and music, I find solace in nature's embrace. My heart is drawn to animals and the serene beauty of the natural world, fueling my desire to protect and preserve our precious environment.