North Korean hackers from the Lazarus group registered fake companies in the U.S. with the aim of attacking crypto developers. According to information from the research company Silent Push, the perpetrators created at least two fake companies and used them to distribute malware. They sent out job application forms and conducted mock interviews to gain access to developers' crypto wallets.
With the help of artificial intelligence, fake employee profiles were generated, which were actively supported through blogs and social networks. All company domains now contain warnings from the FBI about the hackers' activities.
This campaign resembles past incidents, such as the hack of the Ronin bridge in 2022, when $625 million was stolen from the game Axie Infinity. Groups associated with North Korea have stolen over $3 billion in cryptocurrencies in the past five years, including the recent hack of the Bybit exchange.$BTC $ETH $SUI
