North Korea has infiltrated up to 20% of crypto firms, security expert says
Up to one-fifth of all crypto companies may have North Korean workers embedded in their operations, a security expert warned at Devconnect in Buenos Aires.
- Up to 20% of crypto companies may unknowingly have North Korean workers embedded.
- An estimated 30–40% of crypto job applicants are DPRK attempts to infiltrate firms.
- North Korea has stolen over $3B in crypto in three years, funding nuclear programs.
Pablo Sabbatella, who founded web3 audit firm Opsek and serves as a Security Alliance member, shared estimates that suggest the problem extends far beyond isolated incidents.
Job applications flooding into crypto firms show an even more troubling picture. Sabbatella estimates that roughly 30% to 40% of applicants are North Korean attempts at gaining employment.
Sanctions evasion through identity theft schemes
International sanctions prevent North Koreans from applying for jobs under their real identities. The workaround involves recruiting people in other countries to serve as fake employees.
Freelance platforms like Upwork and Freelancer have become hunting grounds for these recruiters, who target workers in Ukraine, the Philippines, and similar nations.
The arrangement splits earnings 80-20, with the North Korean agent taking the larger share. Collaborators provide verified credentials or allow remote use of their identity.
U.S. companies face particular targeting. North Korean agents claim to be non-English speaking Chinese applicants who need interview assistance.
The “front person” gets their computer infected with malware during this process and grants the agent access to American IP addresses and overall internet access than North Korea allows.
Companies often retain these workers long-term. “They work well, they work a lot, and they never complain,” Sabbatella told local news. Performance keeps suspicions low while access to sensitive systems grows.
Weak security practices enable massive theft operations
Pyongyang’s cyber operations have netted over $3 billion in stolen cryptocurrency across three years, according to U.S. Treasury Department figures from November.
The stolen funds flow directly into North Korea’s nuclear weapons development programs.
Sabbatella placed blame squarely on industry practices. Crypto companies show weaker operational security than any other computing sector, he argued.
Founders publicly reveal their identities, mishandle private keys, and succumb to manipulation tactics.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
South Korea Implements Comprehensive Crypto AML Enforcement: Exchanges Subject to Standardized Sanctions
- South Korea's FIU is imposing uniform penalties on major crypto exchanges like Upbit and Bithumb for AML/KYC violations, starting with a 35.2 billion won fine on Dunamu. - A "first-in, first-out" enforcement timeline extends into 2026, with Korbit and GOPAX facing imminent sanctions while Bithumb's case delays due to order book inspections. - The crackdown reflects South Korea's global regulatory leadership, aligning with stricter AML compliance and a delayed 2027 crypto tax regime that heightens market
XRP News Today: XRP Faces a Pivotal Moment—ETF Excitement Clashes with Technical Skepticism
- XRP's price debate intensifies as spot ETFs attract $410M inflows but fail to push the token above $100, with analysts divided on their long-term impact. - Prominent analyst Moon argues $10+ targets require more than ETF demand, contrasting bullish claims about XRP's utility-driven $1,000 potential. - Ripple's $500M Swell 2025 funding and 11 approved XRP ETFs signal institutional confidence, though historical post-Swell declines persist. - Technical indicators show mixed signals: $2 support retests and p
Bitcoin News Update: Major Whale Places $87 Million 3x Leveraged Bet Opposing BTC Surge Amid Divided Market
- A Hyperliquid whale opened a $87.58M 3x BTC short, contrasting with bullish market trends and other traders' strategies. - Another 20x $131M short faces liquidation risk if BTC surpasses $111,770, while $343.89M in 24-hour liquidations highlight short-position vulnerability. - Technical indicators (RSI 66, 15/1 buy/sell signals) and institutional BTC purchases support upward momentum despite liquidity risks on Hyperliquid. - Diverging whale strategies and macro factors like Fed policy underscore crypto's
Ethereum News Update: Major Institutions View Ethereum as a Key Asset, Outpacing ETF Investments
- 68 publicly traded firms now hold 12.7 million ETH, surpassing all Ethereum spot ETFs' 11.3 million holdings as of July 2024. - Firms like Coinbase and Gemini lead corporate accumulation, while banks like Fidelity expand crypto custody services for institutional clients. - Analysts cite regulatory clarity and improved risk frameworks as drivers, with 72% of institutional investors boosting crypto allocations in 2024. - Critics warn of market manipulation risks as corporate holdings now control 54% of ins
Trending news
MoreCrypto prices
More
