Cryptocurrency giants on High Alert: Beware of North Korean Hacking Schemes
Changpeng Zhao,a prominent figure in the cryptocurrency realm,has posted warnings about elegant North Korean hackers infiltrating top crypto firms. These hackers utilize various methods too gain access, such as posing as job applicants or users needing support.
According to Zhao,state-sponsored groups like the lazarus Gang employ advanced tactics. Hackers may pretend to be job candidates targeting progress, security, or finance roles. If they don’t get hired, they might act as recruiters for rival companies, luring current employees with job offers. During interviews, they sometimes claim technical issues with video conferencing tools, urging victims to click on malicious links for updates.
Another common trick involves sending phony coding challenges that, when executed, install malware on the target’s device. A notorious incident involved the hacking group Famous Chollina, deploying JSCEAL malware disguised as legitimate crypto platform ads.
CZ also notes that hackers impersonate users requesting customer support. They embed viruses in seemingly innocent links sent via support tickets, which download harmful software onto the victim’s system if clicked.
Zhao cites a major breach involving an Indian outsourcing firm linked to a US exchange, resulting in over $400 million in stolen assets. While the exchange isn’t named, it’s speculated to be Coinbase, where Indian call centers were bribed, allowing hackers to access customer data.
This incident underscores the vulnerability ofcrypto exchanges and stresses the need for enhanced security measures against persistent cyber threats.
