Binance founder Changpeng Zhao (CZ) has given a warning to crypto projects about North Korean hackers.
He detailed how the group uses more and more advanced tactics to access companies.
Actuals operate the recruitment process
CZ shared His worries via a post of 18 September X, who describe the hackers as ‘advanced, creative and patient’. He explained how the most common method used by these people means that they are posed as track candidates to protect a role in companies, in particular in developers, security and financing positions, giving them a “foot in the door”.
In other cases, the group introduces itself as employers and attempts to interview staff, using the process to distribute malware. Zhao noted that during these sessions the attackers often claim that there is a problem with Zoom and then send a link to an “update” with a virus, or they give coding questions followed by “sample code” embedded with malware.
Another tactic means that you are acting as users who request customer support with malignant links. CZ added that hackers also pay or bribe employees and hired suppliers to gain access to data, which points to a recent case in India, where an outsourcing service was affected, which resulted in the leak of data from a large American exchange and losing more than $ 400 million.
This warning follows the release of a report from CyberSecurity Group Security Alliance (Seal), which have linked more than 60 cheaters to North Korean operations. The report separate That these attackers built fake LinkedIn profiles, set up Github portfolios and used forged government -IDs to really make their applications look.
Shift in methods
North Korean hackers have always been a major threat in the crypto industry, with more than $ 1.3 billion in assets stolen in 2024 alone. Traditionally they trusted phishing, malware and private key compromises to plunder trade fairs. Recent reports, however, suggest that they focus on aiming human resources.
A separate study by Zachxbt also discovered how a small DVK team of five IT employees operated more than 30 fake identities at Crypto companies. Elsewhere, Coinbase recently also reported a similar threat to these bad actors. The exchange shared that they are increasingly focusing on their external employee policy to infiltrate sensitive systems.
CEO Brian Armstrong has since then announced Changes in the company’s internal security protocols, including compulsory personal onboarding in the US, fingerprints and American citizenship requirements for employees with system -level access. The exchange also introduced stricter interview procedures, such as requiring cameras to stay on, to prevent simulation and AI-assisted coaching.
In the light of the growing threat to the labor market, CZ has urged to train their employees at Crypto platforms in order not to download files and carefully screen potential candidates.
Binance free $ 600 (excluding cryptopotato): Use this link to register a new account and receive $ 600 excluding welcome offer on Binance (Full details).
Limited offer for Cryptopotato readers at Bybit: Use this link to register and open a free function of $ 500 on each coin!
#warns #crypto #companies #North #Korean #Hacker #threats