Before pivoting to cryptocurrency miners, Bismuth had traditionally targeted human and civil rights organizations both inside and outside Vietnam using sophisticated techniques. However, according to a Microsoft security report, since “cryptocurrency miners are typically associated with cybercriminal operations, not sophisticated nation-state actor activity.”
This means crypto miners are not seen as the most sophisticated type of threats and therefore, are not “among the most critical security issues that defenders address with urgency.”
Yet, as the report explains, investigators began observing a change in Bismuth’s tactics back in July 2020. The report says:
In campaigns from July to August 2020, the group deployed Monero coin miners in attacks that targeted both the private sector and government institutions in France and Vietnam.
Although the Microsoft security report acknowledges that Bismuth’s use of coin miners was unexpected, the strategy remains “consistent with the group’s longtime methods of blending in.”
The report adds that “this pattern of blending in is particularly evident in these recent attacks, starting from the initial access stage: spear-phishing emails that were specially crafted for one specific recipient per target organization and showed signs of prior reconnaissance.”
Further, the use of cryptocurrency miners enables Bismuth “to hide its more nefarious activities behind threats that may be perceived to be less alarming because they’re ‘commodity’ malware.”
Meanwhile, the same report proffers what it terms “mitigation recommendations for building organizational resilience.” Part of the recommendations includes educating end-users about protecting personal and business information on social media.
The report also encourages users to filter unsolicited communication, identifying lures in spear-phishing email, and reporting of reconnaissance attempts and other suspicious activity.
Do you agree with the report’s assessment that cryptocurrency miners are associated with cybercriminal operations? Share your views in the comments section below.
The post Microsoft Report says Nation-State Hacker Group is Leveraging Cryptocurrency Techniques to Stay Under the Radar appeared first on Bitcoin News.
[…]
Learn more
The Tulip Prize [1] was awarded yesterday to François Villeroy de Galhau for a speech…
Senator Elizabeth Warren, supported by other senators, today introduced a bill titled the “Digital Asset…
President Volodymyr Zelensky today signed the “virtual assets” law adopted by the Ukrainian parliament on…
Joe Biden today signed an executive order asking the federal government to assess the risks…
After the implementation of the Ethereum blockchain in the consensus Proof-of-Stake model called “Beacon Chain”,…
It hung in the face of investors, this correction. And if the movements of Bitcoin…
Leave a Comment