Kraken Outs North Korean Hacker Masquerading as Job Applicant: Details

By: cryptosheadlines|2025/05/02 16:45:03
0
Share
copy
Airdrop Is Live CaryptosHeadlines Media Has Launched Its Native Token CHT. Airdrop Is Live For Everyone, Claim Instant 5000 CHT Tokens Worth Of $50 USDT. Join the Airdrop at the official website, CryptosHeadlinesToken.com What began as a seemingly routine recruitment drive at U.S.-based crypto exchange Kraken took a dramatic turn when the company realized it was dealing with a North Korean hacker posing as a job applicant. The candidate, who had applied for an engineering position, raised suspicions early on by using a different name during the interview and inconsistently switching between voices—suggesting real-time coaching.Instead of cutting the interview short, Kraken chose a more strategic route. The team allowed the applicant to proceed through several stages of the hiring pipeline, turning the process into an opportunity to uncover deeper intelligence on the methods and networks used by the infiltrator.Hiring Process Unmasks an International ThreatAccording to a blog post published by Kraken on May 1, the incident aligns with warnings from industry partners who had already flagged suspicious hiring attempts tied to North Korea. A key breakthrough came when Kraken matched the applicant’s email with a list previously identified as being associated with North Korean hacking collectives.The investigation revealed a complex network of fake identities being used to target multiple crypto firms, not just Kraken. Technical inconsistencies piled up—VPN-masked remote Mac desktops, suspicious ID documents, and a resume linked to a GitHub profile using an email compromised in an old data breach.It became increasingly evident that the applicant’s primary identification had been doctored, likely built on details from a two-year-old identity theft case. Final interviews were conducted by Kraken’s chief security officer, Nick Percoco, who used trap verification protocols. The candidate failed, confirming the worst: a state-backed attempt at infiltration.“This isn’t just a crypto security concern — it’s a global one,” said Percoco. “The old adage in crypto, ‘Don’t trust, verify,’ has never rung truer.”North Korean Lazarus GroupNorth Korea has ramped up its focus on the crypto industry, often as a means of circumventing international sanctions. The Lazarus Group, a state-sponsored hacking syndicate, has been tied to numerous heists—including the record-breaking $1.4 billion hack of Bybit in February.According to joint statements by the U.S., South Korea, and Japan, North Korean hackers stole over $650 million in 2024 alone. Some even established U.S.-based shell companies to push malware and infiltrate developer networks.Kraken’s exposé serves as a stark reminder: In crypto, threats aren’t always external — sometimes, they come through your front door disguised as opportunity.Source link

-- Price

--

You may also like

Morning News | SK Hynix officially launches the marketing promotion process for its U.S. stock listing; the Central Cyberspace Administration announces the results of the first phase of rectifying AI application chaos, with over 14,000 non-compliant pr...

July 6 Market Important Events Overview

How has Binance's stock business performed in the 30 days since its launch?

Emerging market buying supported the first wave of demand.

Blockchain Capital Partner: AI is rewriting the fundamental unit of labor

The rise of AI is rewriting the basic unit of labor from "positions" and "companies" to "tasks." When programmable labor meets programmable currency, a production line without companies, salary systems, or HR becomes possible for the first time.

Can Open USD support Stripe's ambitions?

Stripe collaborates with multiple parties to launch OUSD, not only challenging the dominance of USDC but also exposing its trillion-dollar ambition to transition from a "payment interface" to a "next-generation funds settlement network."

Founder of Baixing.com: I believe half of the statement that large language models devour everything

The internet has been shouting for so many years about devouring everything. Has it really devoured everything now? Is it the internet that devours everything, or is it the large models that devour everything? Both are devouring, and nothing is left?

A "legal" robbery? Attackers emptied the BonkDAO treasury by buying tickets

Handing over the keys to the vault to a public vote where "anyone can spend money to participate," without sufficient oversight mechanisms, even the most legitimate governance ideals may turn into the most convenient tools for attackers.

Contents

Popular coins

Latest Crypto News

Read more
iconiconiconiconiconiconicon
Customer Support:@weikecs
Business Cooperation:@weikecs
Quant Trading & MM:bd@weex.com
VIP Program:support@weex.com