Headline: Угрозы подставных сотрудников из Северной Кореи: Как хакеры ведут охоту за компаниями Translation: Threats of Proxy Employees from North Korea: How Hackers Hunt for Companies

North Korean hackers are described as «advanced, creative, and patient» by former Binance CEO Changpeng Zhao (CZ). He pointed out the ongoing threat they pose to companies.

The ex-head of the exchange noted that he has personally encountered or heard of such incidents. Hackers from North Korea pose as job candidates in order to gain entry into companies—this «opens doors» for them.

«They particularly favor positions in development, security, and finance,» CZ added.

Additionally, North Korean hackers disguise themselves as employers, attempting to interview or offer jobs to employees of other firms, the businessman continued. During their interactions, they often experience «Zoom issues» and send phishing links for «an updated meeting.»

Other covert agents pose questions related to programming to later forward malicious «sample code» to employees.

CZ mentioned cases where hackers posed as users reaching out to customer support, trying to trick specialists into visiting compromised websites.

«They bribe your employees and outsourcing providers for access to data. Just a few months ago, hackers breached a major Indian outsourcing service, leading to a data leak from a significant American exchange,» which resulted in asset losses exceeding $400 million. «The list goes on,» Zhao wrote.

He advised all crypto platforms to «educate employees not to download files and to scrutinize candidates more carefully.»

In his post, CZ referenced a publication by Security Alliance, which has compiled a portfolio of «undercover employees» from North Korea.

«North Korean developers are eager to work at your company, but it’s crucial to avoid falling for hiring scams. We created this portfolio to aid you in selecting the right North Korean IT professional,» cybersecurity experts sarcastically comment.

Their website includes descriptions of 62 suspected agents from North Korea, with some detailing personal information, career achievements, resumes, and interview records.

For instance, an individual named Alex Hong applied to nine crypto companies.

In June, the U.S. Department of Justice accused four North Korean nationals of stealing $900,000 from a blockchain startup in Atlanta where they worked as IT specialists.