Share this article
Secretive Hacking Group Targeted Bitcoin Firms, Research Shows
A secretive hacking group known as Wild Neutron has targeted a range of businesses worldwide including bitcoin companies.
By Stan Higgins
Updated May 9, 2023, 3:02 a.m. Published Jul 9, 2015, 7:56 p.m.
A secretive hacking group known as Wild Neutron has targeted a range of businesses worldwide including bitcoin companies, two top cybersecurity firms have reported.
Twin studies published by Kapersky Lab and Symantec state that the group, alternatively known as Morpho or Jripbot, has been involved in a number of high-profile attacks on companies like Apple, Google and Facebook, among many others.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
While no specific firms were named, Kapersky released an infographic including bitcoin companies among a list of businesses targeted by the shadowy group.
The group, which the security firms suggest is not backed by any particular nation-state and appears to be focused on stealing corporate secrets, has also targeted jihadist forums, spyware developers and firms involved in finance, mergers and acquisitions and information technology.
Research director Costin Raiu said in a statement:
“Wild Neutron is a skilled and quite versatile group. Active since 2011, it has been using at least one zero-day exploit, custom malware and tools for Windows and OS X. Even though in the past it has attacked some of the most prominent companies in the world, it has managed to keep a relatively low profile via solid operational security which has so far eluded most attribution efforts."
The group first emerged in 2013, and according to Symantec's research, has targeted firms based primarily in the US, Canada and Europe. Kapersky reported that, as of now, the origin of Wild Neutron "remains a mystery".
Images via Kapersky Lab, Shutterstock
More For You
What to know:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
More For You
Turkey's Paribu Buys CoinMENA in $240M Deal, Expanding Into High-Growth Crypto Markets
With the acquisition, Paribu gains regulatory foothold in Bahrain and Dubai and access to the region's fast-growing crypto user base.
What to know:
- Paribu acquires Bahrain- and Dubai-based CoinMENA for up to $240 million.
- Deal marks Turkey’s biggest fintech acquisition and first international crypto M&A, the firm said.
- The move taps into the MENA region’s fast-growing crypto user base and supportive regulatory hubs.
Top Stories
