North Korean Hackers Are Using Fake Job Offers to Breach Cloud Systems, Steal Billions in Crypto
Main Idea
North Korean hacking group UNC4899, linked to Lazarus Group and others, has stolen millions in cryptocurrency through sophisticated job lure tactics and cloud system exploits, with AI enabling their operations to scale.
Key Points
1. UNC4899, a North Korean hacking unit, uses job lures to infiltrate cloud environments, resulting in theft of millions worth of cryptocurrency.
2. Google Cloud's H2 2025 report highlights UNC4899's tactics, including posing as recruiters and leveraging AI for scaling attacks.
3. Wiz reports that UNC4899/TraderTraitor groups have stolen $1.6 billion in 2025, targeting cloud systems with fake job offers and malicious code.
4. Notable hacks include the $620 million Axie Infinity breach, $305 million DMM Bitcoin hack, and $1.5 billion Bybit exploit.
5. North Korea accounts for 35% of all stolen crypto funds, with operatives continuously developing new techniques to meet strategic objectives.
Description
North Korean operatives have breached crypto firms’ cloud systems using fake IT job offers and malware, stealing billions this year.
Latest News
- Trump to Issue Executive Order Shielding Crypto Firms From Debanking: WSJ2025-08-05 06:10:41
- AI Version of Parkland Victim Used in Gun Control Interview Sparks Public Backlash2025-08-05 05:39:42
- Crypto Rises Alongside Stocks as Fed Pivot Bets Build2025-08-05 05:01:28
- CFTC Seeks Feedback on Plan to List Spot Crypto on Registered Exchanges2025-08-05 02:07:05
- North Korean Hackers Are Using Fake Job Offers to Breach Cloud Systems, Steal Billions in Crypto2025-08-05 00:25:40