#northkoreahackers
northkoreahackers
118,916 показвания
134 обсъждат
Популярни
Последни
🚨 LATEST: Ripple is now sharing North Korea threat intelligence with the broader crypto industry through Crypto ISAC, enabling security teams to act on DPRK threats in real time.#Ripple #NorthKoreaHackers #crypto #news #NewsAboutCrypto
North Korea Crypto Theft! 😱
😱 NORTH KOREA NE $285 MILLION CRYPTO CHURA LIYA — IN PERSON JAAKE!
Drift Protocol ka $285 Million hack — investigators ne confirm kiya ke North Korean state-backed hackers mahino tak in-person ghus ke andar rahe aur phir crypto churaya! Bitcoin Sistemi
2026 mein North Korea crypto scams aur hacks ke 76% ke zimmedar hain — aur 2017 se ab tak $6 Billion chura chuke hain! Bitcoin Sistemi
🛡️ Khud ko kaise bachao:
❌ Unknown wallets se interact mat karo
✅ Hardware wallet use karo
✅ Sirf trusted platforms use karo
Share karo — dosto ko bachao
#cryptohacks #NorthKoreaHackers #SecurityAlert #bitcoin.” #BinanceSquareFamily
😱 NORTH KOREA NE $285 MILLION CRYPTO CHURA LIYA — IN PERSON JAAKE!
Drift Protocol ka $285 Million hack — investigators ne confirm kiya ke North Korean state-backed hackers mahino tak in-person ghus ke andar rahe aur phir crypto churaya! Bitcoin Sistemi
2026 mein North Korea crypto scams aur hacks ke 76% ke zimmedar hain — aur 2017 se ab tak $6 Billion chura chuke hain! Bitcoin Sistemi
🛡️ Khud ko kaise bachao:
❌ Unknown wallets se interact mat karo
✅ Hardware wallet use karo
✅ Sirf trusted platforms use karo
Share karo — dosto ko bachao
#cryptohacks #NorthKoreaHackers #SecurityAlert #bitcoin.” #BinanceSquareFamily
مجموعة Lazarus (مجموعة هاكرز مدعومة من كوريا الشمالية 🇰🇵) شنت هجومًا على مجمع DEX التابع لـ OKX! 🚨
الهجوم أدى إلى تعليق الخدمة مؤقتًا من قبل OKX، وهو منصة تبادل شهيرة للعملات الرقمية. تُعرف مجموعة Lazarus بكونها واحدة من أخطر المجموعات على الإنترنت، حيث تقوم بشن هجمات تستهدف منصات العملات الرقمية وسرقة أموال المستخدمين لتمويل النظام الكوري الشمالي.
#TonRally #Lazarus #NorthKoreaHackers #BTC #bitcoin
$BTC
الهجوم أدى إلى تعليق الخدمة مؤقتًا من قبل OKX، وهو منصة تبادل شهيرة للعملات الرقمية. تُعرف مجموعة Lazarus بكونها واحدة من أخطر المجموعات على الإنترنت، حيث تقوم بشن هجمات تستهدف منصات العملات الرقمية وسرقة أموال المستخدمين لتمويل النظام الكوري الشمالي.
#TonRally #Lazarus #NorthKoreaHackers #BTC #bitcoin
$BTC
**🚨 U.S. Targets Cambodian Company Aiding North Korea’s Crypto Crimes 💸**
The U.S. says Huione Group (Cambodia) helped North Korea’s hackers (Lazarus Group 👾) hide stolen crypto money. Quick facts:
- U.S. Move: Stop Huione from using U.S. banks 🏦 to block illegal crypto-to-cash schemes.
- $4 Billion Dirty Money :
→ 🐷 $36M from scams (people tricked into fake crypto deals).
→ 💻 $37M from North Korea’s stolen crypto.
- Secret Tool: Huione made USDH, a “stablecoin” tied to dollars that can’t be frozen 🚫, helping hide illegal cash.
- Cambodia Acted: Banned Huione’s crypto work in March 2024.
Why It’s Important: To stop bad actors like North Korea from using crypto for illegal funding 🌍.
Your thoughts? Should stablecoins be regulated harder? 👇
#crypto #NorthKoreaHackers
The U.S. says Huione Group (Cambodia) helped North Korea’s hackers (Lazarus Group 👾) hide stolen crypto money. Quick facts:
- U.S. Move: Stop Huione from using U.S. banks 🏦 to block illegal crypto-to-cash schemes.
- $4 Billion Dirty Money :
→ 🐷 $36M from scams (people tricked into fake crypto deals).
→ 💻 $37M from North Korea’s stolen crypto.
- Secret Tool: Huione made USDH, a “stablecoin” tied to dollars that can’t be frozen 🚫, helping hide illegal cash.
- Cambodia Acted: Banned Huione’s crypto work in March 2024.
Why It’s Important: To stop bad actors like North Korea from using crypto for illegal funding 🌍.
Your thoughts? Should stablecoins be regulated harder? 👇
#crypto #NorthKoreaHackers
North Korea’s 5,000-Ton Choe Hyon-Class Destroyer Sinks During Inauguration
North Korea's highly anticipated naval advancement turned into a national embarrassment as the new Choe Hyon-class destroyer capsized during its launch ceremony in front of Kim Jong Un. Designed as a symbol of rising maritime strength, the 5,000-ton warship never made it to sea. Reports suggest a critical failure in the launch mechanism caused the vessel to tip and sink.
Kim has condemned the incident as a “criminal act” and is reportedly furious with former Russian Defense Minister Sergei Shoigu, blaming Russian naval technology for the catastrophic failure.
North Korea's highly anticipated naval advancement turned into a national embarrassment as the new Choe Hyon-class destroyer capsized during its launch ceremony in front of Kim Jong Un. Designed as a symbol of rising maritime strength, the 5,000-ton warship never made it to sea. Reports suggest a critical failure in the launch mechanism caused the vessel to tip and sink.
Kim has condemned the incident as a “criminal act” and is reportedly furious with former Russian Defense Minister Sergei Shoigu, blaming Russian naval technology for the catastrophic failure.
🌐💰 حتى كوريا الشمالية لم تسلم من فخاخ الكريبتو! 💸🐸
في خطوة غامضة، استخدم هاكرز كوريون شماليون واجهة Tornado Cash (المُخترقة!) لغسل 3.1 مليون دولار من الأموال المسروقة، ليتبين لاحقًا أنهم استثمروا هذا المبلغ في شراء 437.6 مليار من عملة PEPE 🐸🚀. لكن المفاجأة الكبرى؟ 🤯 كوريا الشمالية نفسها تعرضت للاحتيال! حيث تبين أنهم استخدموا نسخة مخترقة من المنصة، مما أدى إلى فقدانهم لبعض الأموال أثناء العملية! 🔥🎭
حتى أعقد العقول الإجرامية لا تستطيع الهروب من جنون عالم الكريبتو! 🤡💥
#StablecoinSurge #TelegramFounderToLeaveFrance #KaitoXAccountHacked #pepe⚡ #NorthKoreaHackers $PEPE
في خطوة غامضة، استخدم هاكرز كوريون شماليون واجهة Tornado Cash (المُخترقة!) لغسل 3.1 مليون دولار من الأموال المسروقة، ليتبين لاحقًا أنهم استثمروا هذا المبلغ في شراء 437.6 مليار من عملة PEPE 🐸🚀. لكن المفاجأة الكبرى؟ 🤯 كوريا الشمالية نفسها تعرضت للاحتيال! حيث تبين أنهم استخدموا نسخة مخترقة من المنصة، مما أدى إلى فقدانهم لبعض الأموال أثناء العملية! 🔥🎭
حتى أعقد العقول الإجرامية لا تستطيع الهروب من جنون عالم الكريبتو! 🤡💥
#StablecoinSurge #TelegramFounderToLeaveFrance #KaitoXAccountHacked #pepe⚡ #NorthKoreaHackers $PEPE
Bybit Cold Wallet Hack & North Korea's 1.5 Billion ETH Strategic Reserves: A Coincidence or a Master Plan?
In a shocking development that has sent ripples through the cryptocurrency community, Bybit, one of the leading global crypto exchanges, has confirmed a massive hack targeting its cold wallet. The breach reportedly led to the theft of around 1.5 billion ETH, a staggering amount of digital assets, raising eyebrows across the industry. The news of the hack has shaken investor confidence, and security protocols for exchanges are now under intense scrutiny.
Adding another layer of intrigue, just days after the hack, North Korea made headlines by announcing the establishment of 1.5 billion ETH in its own "strategic reserves." While the details are still murky, sources suggest that this is a significant move by the North Korean regime to bolster its cyber capabilities, and some speculate that the two events may be linked.
With North Korea’s well-documented history of cyberattacks and digital asset thefts, the timing of these announcements has sparked speculation about potential involvement in the hack. The fact that both incidents revolve around 1.5 billion ETH has left many wondering: Is it a mere coincidence, or is there a larger geopolitical strategy at play?
Experts are divided on the issue. Some believe the breach could be the work of highly skilled hackers with access to sophisticated tools, possibly state-sponsored. Others think that North Korea’s announcement might be a propaganda play, leveraging the hack to highlight its growing influence in the digital currency space.
The situation remains fluid, but one thing is clear: as crypto evolves, the intersection of national security, cybersecurity, and digital currencies becomes increasingly complex. Investors and regulators alike will be watching closely to see how this saga unfolds.
#BybitSecurityBreach #NorthKoreaHackers #ETH $ETH $BTC $XRP
In a shocking development that has sent ripples through the cryptocurrency community, Bybit, one of the leading global crypto exchanges, has confirmed a massive hack targeting its cold wallet. The breach reportedly led to the theft of around 1.5 billion ETH, a staggering amount of digital assets, raising eyebrows across the industry. The news of the hack has shaken investor confidence, and security protocols for exchanges are now under intense scrutiny.
Adding another layer of intrigue, just days after the hack, North Korea made headlines by announcing the establishment of 1.5 billion ETH in its own "strategic reserves." While the details are still murky, sources suggest that this is a significant move by the North Korean regime to bolster its cyber capabilities, and some speculate that the two events may be linked.
With North Korea’s well-documented history of cyberattacks and digital asset thefts, the timing of these announcements has sparked speculation about potential involvement in the hack. The fact that both incidents revolve around 1.5 billion ETH has left many wondering: Is it a mere coincidence, or is there a larger geopolitical strategy at play?
Experts are divided on the issue. Some believe the breach could be the work of highly skilled hackers with access to sophisticated tools, possibly state-sponsored. Others think that North Korea’s announcement might be a propaganda play, leveraging the hack to highlight its growing influence in the digital currency space.
The situation remains fluid, but one thing is clear: as crypto evolves, the intersection of national security, cybersecurity, and digital currencies becomes increasingly complex. Investors and regulators alike will be watching closely to see how this saga unfolds.
#BybitSecurityBreach #NorthKoreaHackers #ETH $ETH $BTC $XRP
Oh Horror 😨😱
Is North Korea planning another hack attack?!
Is Binance the next target?! 🎯 😨
Nah 😁 they are trying hard at the moment.
If we all already know and they are getting exposed it means their chances are much lower.
Old exploits can't be reused.
Plus new security measures and tools like Bubblemaps ($BMT )
Our $BTC and $ETH should be safe 🔐 👮♂️🚨🔒
What is North Korea going to spend the stolen crypto on?!
Food for their starving people 😢 ...
Or make a new War ship 🚢 just to sink it on the first day... again... 😂
#NorthKoreaHackers
Check the article by @Cryptopolitan 👇
Is North Korea planning another hack attack?!
Is Binance the next target?! 🎯 😨
Nah 😁 they are trying hard at the moment.
If we all already know and they are getting exposed it means their chances are much lower.
Old exploits can't be reused.
Plus new security measures and tools like Bubblemaps ($BMT )
Our $BTC and $ETH should be safe 🔐 👮♂️🚨🔒
What is North Korea going to spend the stolen crypto on?!
Food for their starving people 😢 ...
Or make a new War ship 🚢 just to sink it on the first day... again... 😂
#NorthKoreaHackers
Check the article by @Cryptopolitan 👇
Cryptopolitan
·
--
North Korean hackers pose as IT workers to infiltrate crypto projects and exchanges
North Korean hackers regularly apply to Binance. Investigators have also intercepted resources of hackers spinning up identities to apply to key IT jobs.
The threat of DPRK hackers posing as IT workers is still active. Sources have discovered recent data on the techniques used to spin up fake identities and apply as IT workers.
ZachXBT, known for tracking DPRK hackers, recently discovered information from one of the attacker’s devices. ZachXBT has often called out the risk of hiring DPRK workers, which leads to risks for smart contracts, multisig wallets, or compromised devices.
An unnamed source pointed to records of five DPRK hackers, spinning up 30 identities and applying to key IT tasks in crypto and other projects.
1/ An unnamed source recently compromised a DPRK IT worker device which provided insights into how a small team of five ITWs operated 30+ fake identities with government IDs and purchased Upwork/LinkedIn accounts to obtain developer jobs at projects. pic.twitter.com/DEMv0GNM79
— ZachXBT (@zachxbt) August 13, 2025
The teams used fake locations, local names, and identities, overlapping with crypto-friendly countries like Ukraine and Estonia.
North Korean IT workers scour job boards
Leaked documents showed the tools and tracking used by the team, including attempts to build the fake identities.
The hackers used shared documents, revealing a series of Upwork credit purchases. The finding coincides with reports of attempts to buy or rent Upwork accounts and bid on software jobs. Some of the most common jobs included various blockchain roles, smart contract engineering, as well as work on specific projects, including Polygon Labs.
Earlier reports showed that not all North Korean IT workers had hacking in mind or targeted crypto. Some of the workers had the task of earning from legitimate IT jobs, later handing over their pay to the North Korean regime.
An escaped IT worker outlined the scheme, showing that the presence of DPRK IT workers was a constant threat to traditional companies and crypto teams.
Binance filters out DPRK applications almost daily
Binance’s security officer Jimmy Su said the exchange is constantly filtering out candidates. DPRK hackers try to gain access to key crypto positions, and Binance has intercepted both through CV monitoring and at the interview stage. Crypto space also carries unofficial lists of known fake identities, using legitimate-looking LinkedIn accounts and social media profiles.
In the past, Cryptopolitan reported cases where DPRK hackers built the key infrastructure for Web3 projects, leading to compromised smart contracts with known exploit backdoors. These hackers have affected multiple projects, from DeFi to Solana memes. Some of the teams also launched meme tokens as a way of laundering funds.
In addition to public fake profiles, DPRK hackers also use infected code repos or malicious links to make users install malware. Techniques include fake job interviews with links to malware. DPRK hackers also pose as interviewers or project managers, setting up fake meetings with a fake download link.
In some cases, hackers have also proposed to Upwork users to connect to their computer remotely as a way to use new accounts without exposing their identity. Reports have it that some US-based persons agreed to the exchange, allowing the supposed IT workers access via AnyDesk. The hackers also used crypto payments through an intermediary Ethereum wallet, which has been linked to addresses used in large-scale hacks.
Get seen where it counts. Advertise in Cryptopolitan Research and reach crypto’s sharpest investors and builders.
The threat of DPRK hackers posing as IT workers is still active. Sources have discovered recent data on the techniques used to spin up fake identities and apply as IT workers.
ZachXBT, known for tracking DPRK hackers, recently discovered information from one of the attacker’s devices. ZachXBT has often called out the risk of hiring DPRK workers, which leads to risks for smart contracts, multisig wallets, or compromised devices.
An unnamed source pointed to records of five DPRK hackers, spinning up 30 identities and applying to key IT tasks in crypto and other projects.
1/ An unnamed source recently compromised a DPRK IT worker device which provided insights into how a small team of five ITWs operated 30+ fake identities with government IDs and purchased Upwork/LinkedIn accounts to obtain developer jobs at projects. pic.twitter.com/DEMv0GNM79
— ZachXBT (@zachxbt) August 13, 2025
The teams used fake locations, local names, and identities, overlapping with crypto-friendly countries like Ukraine and Estonia.
North Korean IT workers scour job boards
Leaked documents showed the tools and tracking used by the team, including attempts to build the fake identities.
The hackers used shared documents, revealing a series of Upwork credit purchases. The finding coincides with reports of attempts to buy or rent Upwork accounts and bid on software jobs. Some of the most common jobs included various blockchain roles, smart contract engineering, as well as work on specific projects, including Polygon Labs.
Earlier reports showed that not all North Korean IT workers had hacking in mind or targeted crypto. Some of the workers had the task of earning from legitimate IT jobs, later handing over their pay to the North Korean regime.
An escaped IT worker outlined the scheme, showing that the presence of DPRK IT workers was a constant threat to traditional companies and crypto teams.
Binance filters out DPRK applications almost daily
Binance’s security officer Jimmy Su said the exchange is constantly filtering out candidates. DPRK hackers try to gain access to key crypto positions, and Binance has intercepted both through CV monitoring and at the interview stage. Crypto space also carries unofficial lists of known fake identities, using legitimate-looking LinkedIn accounts and social media profiles.
In the past, Cryptopolitan reported cases where DPRK hackers built the key infrastructure for Web3 projects, leading to compromised smart contracts with known exploit backdoors. These hackers have affected multiple projects, from DeFi to Solana memes. Some of the teams also launched meme tokens as a way of laundering funds.
In addition to public fake profiles, DPRK hackers also use infected code repos or malicious links to make users install malware. Techniques include fake job interviews with links to malware. DPRK hackers also pose as interviewers or project managers, setting up fake meetings with a fake download link.
In some cases, hackers have also proposed to Upwork users to connect to their computer remotely as a way to use new accounts without exposing their identity. Reports have it that some US-based persons agreed to the exchange, allowing the supposed IT workers access via AnyDesk. The hackers also used crypto payments through an intermediary Ethereum wallet, which has been linked to addresses used in large-scale hacks.
Get seen where it counts. Advertise in Cryptopolitan Research and reach crypto’s sharpest investors and builders.
🚨 North Korea is likely behind the $1.5bn Bybit hack, researchers say:
🤔Is it's true 👇👇👇👇👇👇👇.
#BybitSecurityBreach #NorthKoreaHackers #Alert🔴 #Binance #market
🤔Is it's true 👇👇👇👇👇👇👇.
#BybitSecurityBreach #NorthKoreaHackers #Alert🔴 #Binance #market
Hàn Quốc trừng phạt 15 người Triều Tiên vì tội trộm cắp tiền điện tử và trộm cắp mạng
Các điệp viên bị trừng phạt bị cáo buộc tạo ra nguồn quỹ cho chương trình phát triển vũ khí hạt nhân của Triều Tiên.
Các tin tặc Triều Tiên đang bị các chính phủ trên toàn thế giới truy đuổi và đổ lỗi cho họ về hơn một nửa giá trị tiền điện tử bị đánh cắp trong năm 2024.
#NorthKoreaHackers
Các điệp viên bị trừng phạt bị cáo buộc tạo ra nguồn quỹ cho chương trình phát triển vũ khí hạt nhân của Triều Tiên.
Các tin tặc Triều Tiên đang bị các chính phủ trên toàn thế giới truy đuổi và đổ lỗi cho họ về hơn một nửa giá trị tiền điện tử bị đánh cắp trong năm 2024.
#NorthKoreaHackers
2. *North Korean Hackers Steal $USDT 2 Billion in Crypto*: Chainalysis revealed that DPRK-linked groups stole $USDT 2 billion in cryptocurrency this year, primarily targeting centralized services and laundering funds through Chinese brokers and blockchain mixers.
#NorthKoreaHackers #USDT
#NorthKoreaHackers #USDT
⚠️ Crypto Alert
Hackers linked to North Korea are using fake Zoom invites to infect devices and drain wallets.
1 wrong click can expose your keys. If you interacted, unplug immediately, rotate wallets, reset creds, turn on 2FA.
So please stay alert and don’t click random meeting links. 🔒
#HackerAlert #NorthKoreaHackers
Hackers linked to North Korea are using fake Zoom invites to infect devices and drain wallets.
1 wrong click can expose your keys. If you interacted, unplug immediately, rotate wallets, reset creds, turn on 2FA.
So please stay alert and don’t click random meeting links. 🔒
#HackerAlert #NorthKoreaHackers
The Lazarus Group, a North Korean state-sponsored hacking collective, executes crypto hacks through a multi-stage process emphasizing social engineering, malware deployment, and rapid fund laundering.
Initial Access
They primarily use spear-phishing emails and fake job offers to trick employees or executives into downloading trojanized apps disguised as trading tools (e.g., Celas Trade Pro, TokenAIS) or AI software, often bypassing defenses with valid certificates.
Exploitation and Theft
Once inside, they exploit unpatched software vulnerabilities (e.g., Zoho ManageEngine), steal private keys from hot/cold wallets, or intercept transactions during transfers, as in the Bybit heist where they rerouted 401,000 ETH worth $1.5B.
Laundering
Stolen assets (mainly BTC, ETH) are funneled through mixers like Tornado Cash, DeFi protocols, DEXs, and OTC networks to convert and obscure funds, retaining much for weapons funding.
$BTC $ETH
#NorthKoreaHackers
Initial Access
They primarily use spear-phishing emails and fake job offers to trick employees or executives into downloading trojanized apps disguised as trading tools (e.g., Celas Trade Pro, TokenAIS) or AI software, often bypassing defenses with valid certificates.
Exploitation and Theft
Once inside, they exploit unpatched software vulnerabilities (e.g., Zoho ManageEngine), steal private keys from hot/cold wallets, or intercept transactions during transfers, as in the Bybit heist where they rerouted 401,000 ETH worth $1.5B.
Laundering
Stolen assets (mainly BTC, ETH) are funneled through mixers like Tornado Cash, DeFi protocols, DEXs, and OTC networks to convert and obscure funds, retaining much for weapons funding.
$BTC $ETH
#NorthKoreaHackers
Влезте, за да разгледате още съдържание