Co-founder of Manta Network Dodges Lazarus Attack via Zoom Using Quick Thinking

Co-founder of Manta Network, Kenny Li, shared details about an attempted hack allegedly orchestrated by the North Korean hacking group, the [Lazarus Group](https://forklog.com/cryptorium/chto-izvestno-o-lazarus-group-podozrevaemoj-vo-vzlome-bybit).

During a Zoom call, the attackers used recordings of real team members to persuade Li into downloading a malicious file.

According to him, everything appeared highly convincing: familiar faces were displayed on the screen as if they were part of the conversation. However, the absence of sound and a prompt to update Zoom via a script raised Li’s suspicions. He promptly exited the call.

Following this, Li sought to verify the identity of his interlocutor by placing a Telegram call, but he was met with refusal. Shortly thereafter, the hackers deleted the chat and blocked him.

In a statement to [Cointelegraph](https://cointelegraph.com/news/manta-exec-reveals-attempted-zoom-attack-by-lazarus-using-legit-faces), he suggested that the attackers might have utilized genuine recordings from previous team video calls. Li pointed out that it appeared more like a standard webcam recording rather than something generated by AI.

He indicated that real individuals’ identities had been compromised.

Li cautioned the crypto community about the dangers of any requests to download files. He emphasized that the primary red flag in such situations is the suggestion to download something.

He noted that such attacks often target fatigued or overworked employees who may hastily process requests.

As a reminder, in March, North Korean hackers [attacked](https://forklog.com/news/hakery-atakovali-kriptopredprinimatelej-cherez-zoom) crypto entrepreneurs via Zoom. According to Nick Bax from Security Alliance, this method allowed scammers to extract «tens of millions of dollars.»

On April 14, hackers [stole](https://forklog.com/news/hakery-ukrali-100-000-u-ceo-emblem-vault-cherez-zoom) $100,000 from Jake Gallen, CEO of the NFT platform Emblem Vault, through Zoom. The fraudster posed as a mining platform owner and installed malware on his computer.