For years, cyber threats such as hacking and identity theft have compromised not only individual accounts, but also companies and organizations. And many governments are pointing the finger at North Korea as the likely location of these hackers who have cost the global economy billions of dollars.
Now messages are coming from the Cyberwarcona cybersecurity conference in Washington DC, confirmed the allegations and highlighted an ongoing attempt by North Korean hackers to undermine companies.
Microsoft researcher James Elliot revealed that “IT workers” from North Korea have infiltrated hundreds of companies around the world through impersonation.
Hackers are secretly working with North Korea to infiltrate organizations
According to experts, a corporate recruiter, venture capitalist and IT worker are typical jobs North Korean hackers delay. Cyberwarcon security experts have disclosed the growing cybersecurity breach, highlighting the disruptions caused by cybersecurity threats. During the meeting, experts provided an updated assessment of the threat posed by hackers to global security.
North Korean hackers have stolen billions in crypto by posing as venture capitalists, recruiters and IT workers https://t.co/5mQwES2eqq
— TechCrunch (@TechCrunch) November 28, 2024
Experts say North Korea is making an effort to undermine companies by allowing its hackers to pose as potential employees. The hackers’ main goals were to make money for the North Korean government and steal information that could help build its weapons program.
The group was also responsible for the recent wave of cryptocurrency hacking incidents that rake in billions of dollars. With sanctions already imposed, North Korea is becoming increasingly bold in its efforts.
North Korea and its hacking groups
Experts say several hacker groups are working with the North Korean government. According to Microsoft, one of these groups is ‘Ruby Sleet’, which infiltrated defense and aerospace companies to steal industry information that could help the hermit state develop its navigation and weapons systems.
Cryptocurrencies today hit a total market cap of $3.29 trillion. Chart: TradingView.com
Then there’s the ‘Sapphire Sleet’, who posed as HR recruiters and venture capitalists. This group worked to steal cryptocurrencies from companies and individuals. According to research, the hackers would contact their targets to organize a virtual meeting. However, this virtual meeting is designed not to load correctly.
With this scheme, the hackers will convince the unsuspecting targets to download malware, which they will explain as a tool to solve the problem. In the fake recruitment process, the hacker will ask the candidate to download a skills assessment test that contains malware.
Image: Alamy
Microsoft warns against NoKor hackers
At the same conference, researchers warned the industry about the ‘triple threat’. They said NoKor cybercriminals can find work by misleading employees, monetizing their work and possibly stealing information.
In the Microsoft investigation, hundreds of companies unintentionally hired these hackers. Only a few companies have come forward and shared their experiences.
For example, KnowBe4 said they were tricked into hiring these impostors. Upon learning of the scheme, the company immediately blocked the hackers’ access to their system.
Featured image from Bleeping Computer, chart from TradingView