{"id":634,"date":"2024-10-03T15:01:37","date_gmt":"2024-10-03T15:01:37","guid":{"rendered":"https:\/\/dogewisperer.com\/?p=634"},"modified":"2024-10-03T15:01:37","modified_gmt":"2024-10-03T15:01:37","slug":"hiding-in-plain-sight-crypto-investigation-reveals-how-north-korean-hackers-infiltrated-the-industry","status":"publish","type":"post","link":"https:\/\/dogewisperer.com\/?p=634","title":{"rendered":"Hiding In Plain Sight: Crypto Investigation Reveals How North Korean Hackers Infiltrated The Industry"},"content":{"rendered":"
\n

A crypto investigation recently deep-dived into one of the industry\u2019s largest problems, revealing its extent might be larger than suspected. The report exposed how North Korean hackers have targeted and infiltrated the sector, presenting many legal and cybersecurity risks for companies and investors.<\/p>\n

DPRK Infiltration Targets The Whole Industry<\/h2>\n

CoinDesk recently<\/a> published an investigation detailing how North Koreans have infiltrated the industry, finding that over a dozen crypto companies had fallen victim to the country\u2019s tactics to bypass sanctions and receive money from these projects.<\/p>\n

The report revealed that several companies, including well-established projects like Fantom, Injective, Yearn Finance, ZeroLend, and Sushi, had inadvertently hired IT workers from the Democratic People\u2019s Republic of Korea (DPRK).<\/p>\n

Moreover, it exposed the extent of the problem as the interviews with several founders, industry experts, and blockchain researchers showed that the infiltration<\/a> is \u201cfar more prevalent\u201d than expected.<\/p>\n

During the investigation, most hiring management teams consulted revealed they had interviewed and hired suspected DPRK developers or knew someone who had.<\/p>\n

Blockchain developer Zaki Manian disclosed he unknowingly hired two North Korean IT workers in 2021 to help develop the Cosmos Hub blockchain. He claimed that \u201ceveryone is struggling to filter out these people\u201d as the probability of a job applicant being from the DPRK \u201cis greater than 50% across the entire industry.\u201d<\/p>\n

On-chain investigator ZachXBT unveiled<\/a> the North Korean chain of exploits in August, sharing he had discovered over 25 crypto projects with DPRK-linked developers that have been active since June 2024.<\/p>\n

The crypto sleuth shared the names and addresses of 21 IT workers who had infiltrated the industry in just those three months. Additionally, he uncovered that North Korea was \u201creceiving $300K \u2013 $500K \/ month from working at 25+ projects at once by using fake identities.\u201d<\/p>\n

Crypto Hacks Are Not Like Hollywood Movies<\/h2>\n

The report explained that North Korean cyberattacks \u201cdon\u2019t tend to resemble the Hollywood version of hacking.\u201d Instead, the hackers<\/a> tend to involve some version of social engineering, earning the team\u2019s trust to obtain access to the project\u2019s private keys, usually through a malicious link.<\/p>\n

Taylor Monahan, Product Manager at MetaMask, stated: \u201cTo date, we have never seen DPRK do, like, a real exploit. It\u2019s always social engineering, and then compromise the device, and then compromise the private keys.\u201d<\/p>\n

The North Korean developers use fake documentation to disguise their real nationality, as hiring workers from the DPRK is prohibited in many countries due to sanctions. After being hired, the malicious actors initially do a good job to earn their employers\u2019 trust.<\/p>\n

However, work inconsistencies and discrepancies in their story begin to surface as time passes, making the crypto companies realize they have been targeted in a coordinated attack. Sometimes, teams discover they have been working with more than one individual who presented as one person or that several of their employees are all one person instead.<\/p>\n

As reported<\/a> by Bitcoinist, the Ethereum Layer-2 NFT gaming platform Munchables fell victim to an attack of this kind. In March, the project lost, and later recovered, over $60 million in crypto after a developer turned hacker.<\/p>\n

The heist was revealed to be an inside job and was linked by several industry figures like Laura Shin and ZachXBT to the North Korean government. Moreover, it was suspected that four of the developers in the team were all one person.<\/p>\n

Ultimately, the investigation showed that several crypto projects that employed DPRK IT workers later fell victim to hacks, including Sushi in 2021 and, most recently, Delta Primes in September 2024.<\/p>\n

\"Crypto\"<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

A crypto investigation recently deep-dived into one of the industry\u2019s largest problems, revealing its extent might be larger than suspected. The report exposed how North Korean hackers have targeted and infiltrated the sector, presenting many legal and cybersecurity risks for companies and investors. DPRK Infiltration Targets The Whole Industry CoinDesk recently published an investigation detailing […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"iawp_total_views":0,"footnotes":""},"categories":[2],"tags":[3,4,5],"class_list":["post-634","post","type-post","status-publish","format-standard","hentry","category-news","tag-crypto","tag-doge","tag-news"],"_links":{"self":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/634","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=634"}],"version-history":[{"count":0,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/634\/revisions"}],"wp:attachment":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=634"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=634"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=634"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}