North Korean hackers impersonated VCs, recruiters, and IT professionals in order to steal billions of dollars’ worth of cryptocurrency
In a talk at Cyberwarcon, Microsoft security researcher James Elliott claimed that North Korean IT workers have already used false identities to infiltrate “hundreds” of organizations worldwide, relying on U.S.-based facilitators to manage their company-issued workstations and earnings in order to evade the financial sanctions imposed on North Koreans.
The growing threat from North Korea today is perceived by researchers examining the nation’s cyber capabilities as a hazy mass of distinct hacker groups using a variety of strategies and tactics, all working toward the same objective: stealing cryptocurrency. The nation is already plagued by sanctions, so the leadership has little chance of being held accountable for its hacks.
Microsoft refers to a group of North Korean hackers as “Ruby Sleet” that broke into defense and aerospace firms in an attempt to obtain trade secrets that would aid in the development of its navigation and weaponry.
Security researchers claim that despite their apparent differences, a venture investor, a recruiter from a large corporation, and a recently hired remote IT worker have all been exposed as imposters covertly serving the North Korean government.
Security experts presented their most recent analysis of the North Korean threat on Friday at Cyberwarcon, an annual conference in Washington, DC, centered on disruptive threats in cyberspace.
The researchers cautioned against a persistent effort by the nation’s hackers to impersonate potential workers looking for jobs at international companies in order to obtain funds for the North Korean government and steal trade secrets that support its weapons development. Over the past ten years, these scammers have profited from billions of dollars in bitcoin theft to finance the nation’s nuclear weapons program while evading many international sanctions.
Read More News
News Source: https://shorturl.at/SHR3q