News View Non-AMP

Crypto Scam Exposed! Here’s How Lazarus Uses DeFi Games to Steal Your Money

Published by
Elena R

Lazarus APT, particularly its BlueNoroff subgroup, has become infamous for its high-level cyber attacks on the financial industry, especially targeting cryptocurrency-related businesses. This North Korean-linked hacking group has conducted numerous attacks on major organizations, using advanced malware and exploit techniques to breach defenses.

As the cryptocurrency market continues to soar, so too does the risk of cyberattacks. To understand the full extent of this threat and the tactics employed by these cybercriminals, read on.

Lazarus’ Tools: Manuscrypt, Cutwail, and Turk Power the Campaigns

Since 2013, Lazarus has relied on tools like Manuscrypt, Cutwail, and Turk in over 50 successful campaigns. These powerful tools have helped the group infiltrate targets worldwide, highlighting their technical skill and persistence.

In May 2024, Kaspersky analysts detected the Manuscrypt malware within a Russian system connected to a deceptive website, detankzone[.]com. This site, disguised as a legitimate DeFi NFT game, exploited a zero-day vulnerability in Chrome’s V8 JavaScript engine. This flaw allowed attackers to take full control of any device visiting the site. Following Kaspersky’s report, Google quickly patched the vulnerability and removed all related fake websites.

Blending Technology and Social Engineering

Alongside technical exploits, Lazarus used social engineering by creating fake LinkedIn and X (formerly Twitter) accounts to promote a fake game, “DeTankZone.” They also used a real game, “DeFiTankLand,” as a cover, releasing a convincing game demo to trick users into downloading malware.

This combination of technical hacking and social manipulation underscores Lazarus’ adaptability in bypassing security measures in the crypto industry.

Crypto Investors, Take Note!

This campaign illustrates Lazarus’ ability to evade even the latest security protections. By pairing zero-day vulnerabilities with social engineering, they continue to pose a serious threat to crypto investors.

What’s your take on Lazarus’ latest tactics? Can the crypto sector keep up?

Elena R

Elena is an expert in technical analysis and risk management in cryptocurrency market. She has 10+year experience in writing - accordingly she is avid journalists with a passion towards researching new insights coming into crypto erena.

Recent Posts

Crypto Regulations In China 2025

China was among the earliest countries to enthusiastically embrace cryptocurrency. The country was one of…

June 24, 2025

WazirX Gets Court Extension for Restructuring

WazirX has received the green light from the Singapore Court to submit further arguments in…

June 24, 2025

The Smarter Web Company Boosts Bitcoin Holdings to 543 BTC

UK-based web development firm, The Smarter Web Company, has strengthened its Bitcoin portfolio by purchasing…

June 24, 2025

Metaplanet Targets 210,000 BTC with $5B Investment in U.S. Expansion

Japanese firm Metaplanet is going all in on Bitcoin, allocating $5 billion to its U.S.…

June 24, 2025

Texas Bitcoin Reserve Strategy Becomes Reality With $10M Investment

Texas just made history by becoming the first U.S. state to create a publicly funded…

June 24, 2025

In 2023, Pepe Coin (PEPE) and Bonk (BONK) Flipped a Small $250 Into Millions. This New Meme Coin will Repeat the Feat This Year

The meme coin market is known for volatility, and it’s also known for making legends…

June 24, 2025