Lazarus Group Linked to Bitrefill Cyberattack Exposing Vulnerabilities in Crypto Platforms

The Lazarus Group, a North Korean hacking collective, has been linked to a recent cyberattack on Bitrefill, a cryptocurrency gift card platform. The attack exposed vulnerabilities in the company's systems, allowing the attackers to drain crypto wallets and access customer purchase records.

The breach is notable for its methodical approach, which reflects the broader pattern of Lazarus Group crypto attacks. The attackers exploited human error by compromising an employee's laptop and extracting a legacy credential, which opened the door to the company's infrastructure.