North Korean Hackers Steal NFT Using Nearly 500 Phishing Domains

Hackers affiliated with North Korea’s Lazarus Group are believed to be behind a massive scam campaign targeting non-fungible token (NFT) investors — using nearly 500 scam domains to defraud the victims.

Blockchain security company SlowMist has released a report on December 24, revealed the tactics North Korea’s Advanced Persistent Threat (APT) groups used to separate NFT investors from their NFTs, including decoy websites disguised as a variety of NFT-related platforms and projects.

Example of a scam site Source: SlowMist