Kraken Thwarts North Korean Hacker Posing as Job Applicant

By: financefeeds|2025/05/02 16:30:02
0
Share
copy
U.S.-based crypto exchange Kraken revealed that it uncovered and blocked a North Korean hacking attempt disguised as a job application for an engineering role. The scheme was detailed in a blog post on Wednesday and shows the increasing use of social engineering and insider threats by state-backed cybercriminals targeting the crypto industry. According to Kraken, the red flags emerged early in the interview process when the candidate used a different name than the one on their application and intermittently switched voices during the call—suggesting someone was coaching them live. Rather than cutting the process short, Kraken advanced the applicant through additional stages to collect intelligence on the hacker’s methods. The exchange later confirmed the applicant’s email matched a known address linked to North Korea’s cyber units , which had been flagged by industry partners sharing intelligence on ongoing threats. The investigation revealed a broader network of fake identities used by the hacker to apply to several firms, including signs of manipulated ID documents, a resume tied to a GitHub profile linked to an exposed email, and suspicious login behavior involving VPNs and remote Mac desktops. In the final round of interviews, Kraken’s chief security officer, Nick Percoco, ran a series of identity verification traps that the applicant failed, confirming the person behind the screen was not who they claimed to be. The individual’s ID appeared to contain details lifted from a previous identity theft case. “This wasn’t just a fake candidate—it was a coordinated attempt to get inside a crypto company,” said Percoco. “In today’s environment, the old rules don’t apply. Trust has to be earned—and verified.” The attempted breach follows warnings from U.S., Japanese, and South Korean authorities that North Korea has been actively embedding IT workers in blockchain and crypto firms to exfiltrate funds or intelligence. Lazarus Group , a notorious North Korean hacking collective, was blamed for February’s record-breaking $1.4 billion Bybit hack and several others totaling over $650 million in 2024 alone.

You may also like

How has Binance's stock business performed in the 30 days since its launch?

Emerging market buying supported the first wave of demand.

WEEX P2P now supports BDT & LKR—Merchant Recruitment Now Open

To make crypto deposits easier, WEEX has officially launched its P2P trading platform and continues to expand fiat support. We're excited to announce that the Bangladeshi Taka (BDT) and Sri Lankan Rupee (LKR) are now available on WEEX P2P!

Morning News | SK Hynix officially launches the marketing promotion process for its U.S. stock listing; the Central Cyberspace Administration announces the results of the first phase of rectifying AI application chaos, with over 14,000 non-compliant pr...

July 6 Market Important Events Overview

Can Open USD support Stripe's ambitions?

Stripe collaborates with multiple parties to launch OUSD, not only challenging the dominance of USDC but also exposing its trillion-dollar ambition to transition from a "payment interface" to a "next-generation funds settlement network."

Blockchain Capital Partner: AI is rewriting the fundamental unit of labor

The rise of AI is rewriting the basic unit of labor from "positions" and "companies" to "tasks." When programmable labor meets programmable currency, a production line without companies, salary systems, or HR becomes possible for the first time.

The cryptocurrency industry has become a traditional industry

For entrepreneurs and retail investors still in this industry, they should either embrace the current changes or explore the next unpredictable field in cryptocurrency.

Popular coins

Latest Crypto News

Read more
iconiconiconiconiconiconicon
Customer Support:@weikecs
Business Cooperation:@weikecs
Quant Trading & MM:bd@weex.com
VIP Program:support@weex.com