A group of ethical hackers, known as the Security Alliance (SEAL), has uncovered a network of individuals posing as IT professionals to gain unauthorized access to cryptocurrency companies.
According to their findings, at least 60 fake profiles connected to North Korean actors were created with the intent of securing remote work in crypto-related businesses.
These individuals used false names, fake credentials, and forged personal details to secure jobs that could expose user data or internal systems.
Did you know?
Subscribe – We publish new crypto explainer videos every week!
What is Basic Attention Token (BAT)? Brave Browser EASILY Explained
The group shared a public database that includes details such as email addresses, fabricated identities, supposed locations, citizenship claims, and even past employers that unknowingly hired these impostors.
The repository also includes information about their coding activity, payment history, and other publicly available links tied to each false identity.
Changpeng Zhao, co-founder of Binance
$22.63B
, warned that these tactics are part of a plan by North Korean hackers to infiltrate companies.
He explained that the attackers do not only pretend to be job seekers. In some cases, they pose as employers to interview real staff. During these fake interviews, they may send malicious files disguised as software updates.
According to him, some attackers send fake code samples containing harmful scripts, while others pose as regular users contacting support teams to send dangerous links. In certain cases, employees or contractors are approached with offers of money in return for access to sensitive company information.
Zhao recommended that companies improve their hiring checks, train staff not to open unknown files, and be careful when dealing with unexpected messages, especially those involving links or attachments.
Recently, Anthropic warned that hackers are using Claude to carry out online crimes. What did the company say? Read the full story.
