PANews August 13 news, Binance CSO (Chief Security Officer) Jimmy Su revealed that North Korean hackers disguise themselves as job seekers every day in an attempt to infiltrate the company, becoming one of the biggest threats in the cryptocurrency industry, especially the North Korean-linked Lazarus group. According to statistics, North Korean hackers stole $1.34 billion last year and have already stolen $1.6 billion this year. The hackers use AI technology to forge identities, tricking trust through voice changers and deepfake videos, and also attacking employee devices by polluting public code repositories and faking recruitment links.
Binance discards suspicious resumes every day, which often use specific templates, and applicants commonly use Japanese or Chinese surnames. With the development of AI technology, these hackers have now been able to disguise themselves as developers from Europe or the Middle East, using voice changers and deepfake technology during video interviews. However, their internet connections are often slow, which is a significant clue for identification. Additionally, Binance requires applicants to perform certain actions during interviews to break the forgery, but the specific methods are not disclosed.
To prevent internal infiltration, Binance also monitors the behavior of existing employees, such as working hours and output. If employees show signs of continuous work, it may indicate that they are part of the Lazarus group. North Korean hackers also attack the cryptocurrency industry by polluting public code repositories or faking job invitations. Su emphasized that these attack methods are becoming increasingly complex and pose a significant threat to the industry.