Today, the FBI issued An alert warns that North Korean hackers are targeting U.S. cryptocurrency exchange-traded funds (ETFs) in an attempt to steal digital assets. Hackers are using advanced social engineering techniques to breach the security of companies associated with these financial products, the FBI said.
According to the FBI, the Democratic People's Republic of Korea (DPRK) has been carrying out highly targeted social engineering attacks against employees in the decentralized finance (DeFi) and cryptocurrency industries. These attacks involve detailed pre-operational research and customized scenarios designed to exploit the victim's specific interests and connections.
“North Korean cybercriminals have conducted investigations into a variety of cryptocurrency exchange-traded fund-related targets over the past several months,” the FBI said. “This investigation included pre-operational preparations suggesting that North Korean actors may attempt malicious cyber activity against companies associated with cryptocurrency ETFs or other cryptocurrency-related financial products.”
The FBI highlighted that North Korean cybercriminals are a persistent threat to organizations that handle large amounts of cryptocurrency. Their tactics include impersonating trusted contacts, creating fake scenarios involving job or investment offers, and deploying malware through prolonged and convincing interactions with their targets.
The agency urged companies in the cryptocurrency sector to adopt strict security measures, including multi-factor authentication, limiting access to sensitive information, and verifying the identity of contacts through multiple channels. The FBI also recommended that companies with access to significant cryptocurrency holdings take additional precautions to safeguard their assets against these sophisticated cyber threats.
