According to a recently revealed report, North Korea hackers have targeted crypto developers by creating two fake companies in the US. The objective of these companies was to install malware in their system by giving fake job offers to developers, so that their personal information and details of Crypto Wallets can be stolen. This campaign is a dangerous turn in the Cyber Security World and shows how government-back hacking groups are targeting the digital sector at global levels. If you What are crypto walletsIf you want to know in detail about this, then you can click on the link given.
Two fake companies: Blocknovas LLC and Softglide LLC
According to the report of Cyber Security firm Serene Push, North Korea hackers registered two fake companies named Blocknovas LLC and Softglide LLC in the US Brandnew Mexico and Brandnew York. These companies were fully built with fake identity and fake documents to avoid the US. Through these companies, hackers tried to download malware by giving fake job offers to developers associated with Crypto industry.
Lazarus Crew Conspiracy
The entire operation is associated with North Korea’s notorious Lazarus Crew, which is funded by the country’s intelligence agency Reconnaissance Common Bureau. Lazarus Crew has previously been involved in many large cyber attachments such as bank hacks, Crypto Exchange Breaks and Rancemware attacks. This time, he has adopted the way to make a dent in the developers’ system by implicating the lure of the job, which is very shocking.
It is worth noting that recently North Korea has joined the world’s largest government bitcoin holders and with this North Korea became Third Greatest Bitcoin HolderThis has been possible due to the cyber activities of Lazarus Crew, a hacking group of Milestone North Korea. In February 2025, the same group played an important role in a $ 1.4 billion hack on Bybit Trade, mainly the theft of Ethereum, which was later converted to Bitcoin. Now North Korea has a total of 13,562 BTCs, whose value is around $ 1.14 billion. This phenomenon has emerged as a major alert for the global crypto system.
Why is the crypto industry on target?
Cryptocurrency is not only attracting the attention of global investors, but it has also become a big source of income for North Korea. According to reports, North Korea uses stolen cryptocurrency for its missile technology and weapon development program. This is the reason why the Crypto industry remains on the target of hackers, where it is possible to steal a large amount of virtual assets.
FBI Quick Action
FBI took time in time and blocked the domain attached to Blocknovas. However this is just a step and it clearly shows that such attacks can increase further in the future. Experts believe that this is just the beginning and many more fake platforms related to such operations can be active on the Internet. Serene Push said that some developers have already fallen victim to this malware, stoleing their password and wallet private keys.
Violation of US sanctions
Under the US sanctions imposed on North Korea, no organization or person there is allowed to do business in the US. Through this operation, these sanctions have been cleared, which is a matter of serious concern for the National Security and Digital Sector of America.
Conclusion
This phenomenon is a large alarm for Crypto Builders and Web3 Society. The way malware was spread through fake job offers and social engineering technology shows that cyber attachments have now become smarter and dangerous than ever. Developers will now have to be very cautious, avoid unknown offers and downloads and strictly follow security protocols. This is the time to be aware and cautious, because the cyber war is now being fought through the code.