The crypto community is facing a new kind of threat—North Korean devs are infiltrating crypto companies to steal millions and funnel funds back to the regime in order to bypass sanctions.
In this episode, Sam Kessler, CoinDesk’s deputy managing editor for tech and protocols, and Taylor Monahan, security at MetaMask, explain how North Korea has embedded its operatives into the crypto space, the red flags companies should watch for, and what these hackers are doing once inside crypto firms.
Plus, they share their most interesting stories about how these hackers have gotten hired at crypto companies and the red flags the industry should know about.
Show highlights:
What Sam found in his investigation about North Koreans infiltrating the industry
How Taylor has found that this is a recurring issue
Why Sam and Taylor refer to these infiltrated workers as ‘IT’ workers
The most interesting stories that Sam and Taylor have discovered
The trends in the hiring process that lead to North Koreans being hired and also what the big red flags are
How “easy it is to de-anonymize” addresses and transactions in blockchains
What assets and networks these workers often use to get paid
How, after infiltrating a company, those projects get hacked
How to deal with a situation in which you’ve already hired North Koreans
How to protect a protocol from another type of North Korean hack: by hacking groups
Whether the industry is getting better at security
Visit our website for breaking news, analysis, op-eds, articles to learn about crypto, and much more: unchainedcrypto.com
Thank you to our sponsors!
Polkadot
Mantle
Guests:
Sam Kessler, CoinDesk's deputy managing editor for tech and protocols
CoinDesk: How North Korea Infiltrated the Crypto Industry
Taylor Monahan, Co-Founder of MyEtherWallet
Previous appearances on Unchained:
The QuadrigaCX Case: Taylor Monahan on What We Know From the Blockchain
MyCrypto's Taylor Monahan on Why She's Not a Fan of ICOs
Links
Previous coverage of Unchained on North Korea:
Why North Korea Is Interested in Cryptocurrency
Yeonmi Park on Why Doing Business With North Korea Is Like Buying a Ticket to a Concentration Camp
Others:
DL News: North Korean hackers are infiltrating crypto job boards in a ‘quiet war’ that rakes in $600m
FBI PSA: North Korea Aggressively Targeting Crypto Industry with Well-Disguised Social Engineering Attacks
Chainalysis:
2024 Crypto Crime Mid-year Update Part 1: Cybercrime Climbs as Exchange Thieves and Ransomware Attackers Grow Bolder
Funds Stolen from Crypto Platforms Fall More Than 50% in 2023, but Hacking Remains a Significant Threat as Number of Incidents Rises
Russian and North Korean Cyberattack Infrastructure Converge: New Hacking Data Raises National Security Concerns
ZachXBT: How Lazarus Group laundered $200M from 25+ crypto hacks to fiat from 2020–2023
Timestamps:
00:00 Intro
01:59 Sam's findings on North Korean workers infiltrating crypto projects
04:04 Taylor on the recurring nature of the issue
09:05 Why they’re referred to as ‘IT’ workers
16:17 Most interesting infiltration stories
34:16 Hiring trends and red flags for North Korean operatives
44:02 How easy it is to de-anonymize blockchain transactions
51:05 Assets and networks used for payment
54:06 How infiltrated companies end up getting hacked
58:36 What to do if you've already hired North Korean operatives
1:00:21 How to protect a protocol from being hacked
1:06:22 Is the industry improving in security?
Learn more about your ad choices. Visit megaphone.fm/adchoices