Nation-state hackers deliver malware from “bulletproof” blockchains

Hacking groups, including those linked to the North Korean government, are using public cryptocurrency blockchains to distribute malware from "bulletproof" hosts, making it difficult for law enforcement to take down. Google researchers have observed groups using a technique called EtherHiding to embed malware in smart contracts on blockchains, providing a decentralized and tamper-proof way to spread malware. This method allows for anonymous transactions, stealthy access to malware, and the ability to update malicious payloads easily. The evolution of cyber threats is evident as attackers leverage new technologies like blockchain for malicious purposes.