Secretive Hacking Group Targeted Bitcoin Firms, Research Shows

A secretive hacking group known as Wild Neutron has targeted a range of businesses worldwide including bitcoin companies.

AccessTimeIconJul 9, 2015 at 7:56 p.m. UTC
Updated May 9, 2023 at 3:02 a.m. UTC
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

A secretive hacking group known as Wild Neutron has targeted a range of businesses worldwide including bitcoin companies, two top cybersecurity firms have reported.

Twin studies published by Kapersky Lab and Symantec state that the group, alternatively known as Morpho or Jripbot, has been involved in a number of high-profile attacks on companies like Apple, Google and Facebook, among many others.

While no specific firms were named, Kapersky released an infographic including bitcoin companies among a list of businesses targeted by the shadowy group.

Kapersky Graph
Kapersky Graph

The group, which the security firms suggest is not backed by any particular nation-state and appears to be focused on stealing corporate secrets, has also targeted jihadist forums, spyware developers and firms involved in finance, mergers and acquisitions and information technology.

Research director Costin Raiu said in a statement:

“Wild Neutron is a skilled and quite versatile group. Active since 2011, it has been using at least one zero-day exploit, custom malware and tools for Windows and OS X. Even though in the past it has attacked some of the most prominent companies in the world, it has managed to keep a relatively low profile via solid operational security which has so far eluded most attribution efforts."

The group first emerged in 2013, and according to Symantec's research, has targeted firms based primarily in the US, Canada and Europe. Kapersky reported that, as of now, the origin of Wild Neutron "remains a mystery".


Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is an award-winning media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. In November 2023, CoinDesk was acquired by Bullish, a cryptocurrency exchange, which in turn is owned by, a firm with interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets including bitcoin and EOS. CoinDesk operates as an independent subsidiary, and an editorial committee, chaired by a former editor-in-chief of The Wall Street Journal, is being formed to support journalistic integrity.

Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to to register and buy your pass now.