- The FBI warned that North Korean hackers are targeting employees of crypto firms through elaborate social engineering schemes like fake job offers or investment opportunities to deliver malware.
- The scammers research firms associated with cryptocurrency ETFs and attempt to build rapport with victims through prolonged conversations before providing malicious links or downloads.
- Since 2017, North Korean hackers have allegedly stolen around $3 billion in crypto through such schemes, with the Lazarus Group being responsible for many high-profile attacks.
The FBI has issued a warning about the latest attempt by North Korean hackers to steal cryptocurrency through elaborate social engineering campaigns. The scammers have been targeting employees at crypto firms and deceiving them into downloading malware.
North Korean Hackers Research Targets
The FBI said the North Korean hackers thoroughly research cryptocurrency and blockchain companies before initiating contact. They focus on firms involved with crypto exchange-traded funds (ETFs). The scammers are fluent English speakers and knowledgeable about the technical aspects of cryptocurrency.
Elaborate Ruses to Build Trust
The hackers employ fake offers of employment, investment opportunities, and impersonate well-known industry figures. They aim to build rapport through prolonged conversations so they can eventually send malware undetected. The malware is delivered through links for “pre-employment tests” or other downloads that appear natural and non-alerting.
Billions in Crypto Stolen
North Korean hacking groups like the Lazarus Group have stolen around $3 billion in cryptocurrency since 2017 using these social engineering tactics. The Lazarus Group in particular has been linked to many high-profile crypto exchange hacks.
Previous FBI Warnings
The FBI has repeatedly warned crypto users about North Korean scams. They often pose as employees of crypto exchanges and law firms offering fake recovery services. Users need to be vigilant about unsolicited communications requesting sensitive information or directing them to download anything.
Conclusion
North Korean hackers are a persistent threat to the crypto industry. Their sophisticated social engineering and malware campaigns have allowed them to siphon billions from cryptocurrency firms and individuals. The FBI warnings highlight the need for constant vigilance and secure practices in the crypto sector.
