Северокорейские хакеры обманывают компании, притворяясь соискателями Translated: Headline: North Korean hackers deceive companies by posing as job applicants.

North Korean hackers are described as «advanced, creative, and patient,» according to former Binance CEO Changpeng Zhao (CZ). He highlighted the ongoing risk of their infiltration into companies.

The ex-head of the exchange noted that he has personally encountered or heard of such incidents. Hackers from North Korea pose as job candidates to gain entry into companies, which «opens doors for them.»

«They particularly favor positions in development, security, and finance,» CZ added.

Additionally, North Korean hackers disguise themselves as employers, attempting to conduct interviews or offer jobs to employees of other firms, the businessman continued. During interactions, they encounter «issues with Zoom» and send phishing links to an «updated meeting.»

Other covert agents ask employees programming-related questions, only to later send them a malicious «sample code.»

CZ referred to instances where hackers contacted support services pretending to be users, trying to trick specialists into visiting an infected website.

«They bribe your employees and outsourcing providers for access to data. Just a few months ago, hackers breached a major Indian outsourcing service, leading to a data leak from a large American exchange, resulting in asset losses exceeding $400 million. The list goes on,» Zhao wrote.

He advised all crypto platforms to «educate employees not to download files and to scrutinize candidates more carefully.»

In his post, CZ referenced a publication by Security Alliance, which compiled a portfolio of «fake employees» from North Korea.

«Developers from North Korea are eagerly seeking opportunities to work in your company, but it’s crucial not to fall prey to scams during hiring. We created this portfolio to help you select the right North Korean IT specialist,» cybersecurity experts wittily remarked.

Their website features profiles of 62 alleged agents from North Korea, with some detailing personal data, career achievements, and containing resumes and interview records.

For instance, one individual named Alex Hong applied to nine crypto companies.

Recall that in June, the U.S. Department of Justice accused four North Korean nationals of stealing $900,000 from a blockchain startup in Atlanta, where they were employed as IT specialists.