Kim Jong-un 'unleashes global wave of cybercrime' in bid to stop coronavirus meltdown

Along with two other hacking groups, it stole $571m (£463m) of cryptocurrency from five Asian exchanges between January 2017 and September 2018, a US government report revealed.

Now with North Korea's economy rocked by the coronavirus pandemic and international sanctions, Lazarus has embarked on a new spate of APT (advanced persistent threat) attacks.

"The APT group Lazarus, which is allegedly sponsored by a certain government, is increasingly engaging in cybercrime activities in and out of South Korea," said Seoul-based EST Security.

"The government-sponsored Lazarus organization is conducting major APT attacks not only in Korea, but also in the international community including the United States."

One malicious document sent by Lazarus dealt with the pandemic response in a major city, the security firm said.

Another dodgy file masqueraded as paperwork for the hiring of a US aerospace company.

But the attacks primarily target people who trade cryptocurrencies, with malicious files typically disguised as blockchain software development contracts.

The attacks are a form of "spear phishing", whereby a target is baited with information specific to their interests, in a bid to get them to open dangerous files.

For example, EST Security said the hackers were consistently using emails disguised as job offers in order to spread their malware.

"The Lazarus Group is one of the representative national-level threats targeting South Korea and the United States," the company said in a statement.

"It is organizing cyber infiltration operations and earning foreign currency through online banking and hacking the Bitcoin exchange.

"A malicious document file is used as a bait to target workers in major companies and institutions, and recent threats have increased significantly, requiring special attention."