BSV
$54.49
Vol 31.49m
-0.86%
BTC
$97060
Vol 44109.9m
-0.39%
BCH
$457.48
Vol 375m
-0.3%
LTC
$103.5
Vol 864.54m
2.08%
DOGE
$0.32
Vol 5356.95m
-1.38%
Getting your Trinity Audio player ready...

A new study carried out by cyber threat defense solutions provider Mandiant Inc. has found that North Korean hackers have been copying resumes and profiles from leading job listing platforms LinkedIn and Indeed in an elaborate jobs scam targeted at digital asset firms.

Mandiant found that the objective of the hackers is to gather intelligence about these firms’ upcoming trends and gain access to their internal operations, according to a Bloomberg report.

The hackers reportedly plagiarize details they find on legitimate profiles on LinkedIn and Indeed. Under pretenses of being from other countries, the alleged hackers have also often successfully landed jobs in several U.S. digital assets firms.

Mandiant principal analyst Joe Dobson commented that this increases the possibility of an insider threat. He added that North Korean hackers had shifted their focus from bank heists to the relatively new digital assets market.

“It comes down to insider threats. If someone gets hired onto a crypto project, and they become a core developer, that allows them to influence things, whether for good or not,” Dobson said.

Michael Barnhart, another Mandiant principal analyst, added that the evidence points to the hackers acting on behalf of the North Korean government.

“These are North Koreans trying to get hired and get to a place where they can funnel money back to the regime,” Barnhart chimed in.

North Korean hackers’ notoriety is not new

Mandiant’s findings corroborate the warning made by the U.S. Departments of Treasury, Justice, and State in a joint statement earlier this year. The departments highlighted that North Korean IT workers are trying to obtain freelance employment abroad while posing as South Korean, Japanese, Eastern European, and U.S.-based remote workers.

The warning added that North Korean hackers are also present on the open-source code-sharing platform GitHub. They leverage the public discussion held on the platform to gather intelligence on the digital assets market and software.

In 2022, the U.S. Treasury Department and blockchain security firm Elliptic linked both the Axie Infinity Ronin Bridge and Horizon bridge hacks, respectively, to the Lazarus Group, a notorious North Korean hacker gang.

Previously, the U.N. reported that the North Korean government was sponsoring these hackers to fund its nuclear program. It launders the hacked digital assets loot to evade sanctions placed on it, the U.N. noted.

Watch: The BSV Global Blockchain Convention presentation, Blockchain for Data Integrity & Business Process Management

https://www.youtube.com/watch?v=YGi9nYUBYo0

Recommended for you

Google unveils ‘Willow’; Bernstein downplays quantum threat to Bitcoin
Google claims that Willow can eliminate common errors associated with quantum computing, while Bernstein analysts noted that Willow’s 105 qubits...
December 18, 2024
WhatsOnChain adds support for 1Sat Ordinals with new API set
WhatsOnChain now supports the 1Sat Ordinals with a set of APIs in beta testing; with this new development, developers can...
December 13, 2024
Advertisement
Advertisement
Advertisement