Bitget App
Trade smarter
Buy cryptoMarketsTradeFuturesCopyBotsEarn
FBI says North Korean hackers are 'aggressively targeting' crypto employees

FBI says North Korean hackers are 'aggressively targeting' crypto employees

The BlockThe Block2024/09/02 16:00
By:The Block

Quick Take North Korean hackers are using “complex and elaborate” social engineering strategies on web3 employees to steal company crypto. Such tactics can be hard to spot and dupe even individuals with high technical knowledge. To avoid such threats, the FBI recommends firms eschew storing crypto wallet information on internet-connected devices and create safe systems to verify company individuals.

The United States Federal Bureau of Investigation (FBI) noted that North Korean cybercriminals are "aggressively targeting" employees in the web3 industry to steal crypto funds.

The FBI noted that North Korean actors deploy sophisticated social engineering strategies to deceive individuals at cryptocurrency and decentralized finance (DeFi) firms to "compromise networks connected to cryptocurrency assets," the FBI wrote in a Tuesday release . Such schemes pose a "persistent threat" to entities holding large amounts of cryptocurrency or related products. 

"North Korean malicious cyber actors conducted research on a variety of targets connected to cryptocurrency exchange-traded funds (ETFs) over the last several months," the FBI continued. "This research included pre-operational preparations suggesting North Korean actors may attempt malicious cyber activities against companies associated with cryptocurrency ETFs or other cryptocurrency-related financial products."

In addition to researching potential targets, North Korean cybercriminals have impersonated notable members within an employee's company or fabricated fake scenarios — tailored to the victim's background, skills or business interests — to gain and exploit their trust. 

Other tactics include having the victim download an application on a device connected to the web3 company's network, requesting non-standard software for simple tasks such as video conference or completing a debugging exercise involving malicious code packages. 

To avoid such threats, the FBI recommends that firms eschew storing crypto wallet information on internet-connected devices, refrain from implementing de-bugging exercises on company computers and create systems to verify individuals via a separate communications platform.

The Block previously reported that North Korean hackers used fake job postings to access sensitive information at cryptocurrency firms and that North Korean cybercriminals are responsible for a total of $3 billion worth of crypto asset losses as of July 2024. 


0

Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.

PoolX: Locked for new tokens.
APR up to 10%. Always on, always get airdrop.
Lock now!

You may also like

Pump.fun suspends livestream feature amid backlash

pump.fun’s anonymous founder said they would work to protect users from seeing “repulsive/dangerous content”

Blockworks2024/11/26 08:33

Spot bitcoin ETFs end positive streak with $438 million outflows; BTC dips to $94,500

U.S. spot bitcoin ETFs reported a total daily outflow of $438 million on Monday.Monday’s net outflow ended a five-day streak of net inflows that brought $3.4 billion into the spot bitcoin ETFs.Meanwhile, bitcoin has retraced some of its gains over the past few days, now trading at around $94,500.

The Block2024/11/26 07:08