North Korean Cybercriminal Falsely Applies for Job at Kraken Cryptocurrency Exchange
The crypto world encountered an intriguing clash when a job application at Kraken, a well-known digital asset exchange, led to an encounter with a suspected North Korean agent disguised under a false identity. This thrilling scenario, initially reported by CBS News, underscores the lingering threat of infiltration within the crypto sector.
Did You Know?
- The United Nations estimates that North Korea generates around $600 million annually by deploying agents in foreign businesses.*
- Kraken chose to use this situation as an intelligence-gathering opportunity instead of merely rejecting the application.*
- Crafting bogus resumes and falsified identification papers are common tactics employed in cyber infiltration schemes.
Kraken's security team received an IT job application from someone claiming to be "Steven Smith," a lad with a NYU computer science degree and over a decade of U.S.-based company experience. However, the application had a number of red flags waving like warning signs.
Determined to delve deeper, Kraken's Chief Security Officer Nick Percoco decided to engage further with the candidate. His team suspected this pretend jobseeker might be connected to North Korea and as part of a broader scheme aimed at snatching funds and sensitive data.
Questionable ID adds fuel to the fire
During the interview, the gent declared himself a resident of Houston, Texas. When asked to provide proof of identification, he forwarded a picture of a driver's license that spelled the name "Stephen Smith" differently and showed an address hundreds of miles from the claimed one.
Percoco explained their approach, stating, "We enjoy staring directly at the attackers. Some may call it trolling, but we like to refer to it as security research." This cat-and-mouse game often serves to deter these malicious agents from their plans to pilfer intellectual property, embezzle funds, or draw salaries while working towards North Korea's nefarious objectives.
The United Nations has long sounded the alarm on these operations. North Korean hackers commonly camouflage themselves and apply for remote roles in sectors such as finance, tech, and yes, even crypto. This ulterior motive is not limited to theft, but also involves gaining access to systems and networks for launching further cyberattacks.
In this instance, the applicant had already marked himself on a "Do Not Hire" list created to track individuals attempting to secure employment under false pretenses.
Want to learn more about this intriguing situation? Check out the video below for more details:
[Embed Video Link Here]
Good to Go Casino50% or €500 100 Free Spins! Visit Site**
The cybersecurity threats in the digital asset exchange sector, such as Kraken, are not limited to theft and data breaches, but also involve infiltration from foreign entities like North Korea. In light of this, general-news reports indicate that the United Nations has issued warnings about North Korean agents disguised as job applicants, targeting sectors including finance, technology, and, indeed, crypto.
Kraken's encounter with a suspected North Korean agent, as revealed by CBS News, underscores the need for enhanced cybersecurity measures in the face of such malignant schemes aimed at embezzling funds, stealing intellectual property, and initiating further cyberattacks.
