North Korea
Articles
Lazarus Group Targets macOS Users with New Mach-O Man Malware Arsenal
North Korean hacking group Lazarus Group is deploying modular macOS malware through fake video call invitations on Zoom, Teams, and Google Meet, targeting crypto and fintech companies.
Over $8.6B Drained From Aave as Kelp DAO Hack Triggers Massive DeFi Exodus
Aave's TVL plunged from $26.3B to $17.7B in two days after hackers exploited Kelp DAO's cross-chain bridge, stealing $293M in rsETH and creating $195M in bad debt across lending protocols.
Ketman Project Backed by Ethereum Foundation Uncovers 100 North Korean Agents in Crypto Companies
The Ketman research project, funded through the ETH Rangers program, identified over 100 DPRK IT operatives embedded in Web3 organizations under fabricated identities over six months.
Password "123456" Exposes North Korean IT Worker Network Infiltrating Crypto Industry
On-chain investigator ZachXBT uncovered a sophisticated DPRK IT worker network embedded in crypto projects after obtaining leaked data from an internal North Korean payment server containing 390 accounts and crypto transaction records.
Solana DEX Stabble Urges Emergency Liquidity Withdrawal After Former CTO Linked to North Korea
Solana-based DEX Stabble issued an emergency call for users to withdraw liquidity after its former CTO was identified as a DPRK-linked individual by ZachXBT. The platform's TVL dropped from $2 million to $600,000 within 24 hours.
North Korean Developers Secretly Embedded in Major DeFi Projects for Seven Years
MetaMask developer Taylor Monahan revealed that DPRK IT workers have been infiltrating DeFi projects for at least seven years, contributing code to protocols like SushiSwap, Thorchain, and Yearn.
Drift Protocol Reveals Details of $280M Hack: North Korean Group UNC4736 Identified as Perpetrator
Drift Protocol has published findings from its investigation into the $280M hack that occurred on April 1. The attack has been attributed to North Korean group UNC4736, which spent six months infiltrating the project.
Drift Protocol's $280M Hack Attributed to North Korea's Lazarus Group
Security researchers from Diverg, TRM Labs, and Elliptic have confirmed that North Korea's Lazarus Group (TraderTraitor) was behind the $280M exploit of DeFi protocol Drift. The attack marks Lazarus's 18th hack in 2026.
Bitrefill Hit by Cyberattack Linked to North Korea's Lazarus Group
Crypto gift card platform Bitrefill disclosed a March 1 cyberattack. The company's investigation points to North Korea's Lazarus Group (BlueNoroff division) as the likely perpetrator.
Hackers Target Crypto Professionals Through Fake VC Funds and Spoofed Video Calls
Moonlock Lab uncovered a sophisticated campaign where attackers create fictitious crypto venture funds and use LinkedIn to reach Web3 developers, infecting their devices via the ClickFix technique.
Popular topics
Topics with the most content and project reviews