North Korean hackers ramp up their cyberattacks, targeting IT firms and cryptocurrency

North Korean hackers, working for government-backed groups, are increasing their attacks on a variety of businesses, including IT enterprises and cryptocurrency companies. Their most recent plan includes advanced social engineering tactics used to infiltrate worldwide companies and steal valuable assets such as cryptocurrencies and sensitive military data.

One of the hacker organizations, “Sapphire Sleet,” deceives people with false job offers. They act as legitimate recruiters, leading victims into interviews or employment offers. They infect the victim’s machine with malware during these conversations, often hiding it in seemingly harmless items like PDFs or links.

High-profile hacking of aerospace and defense corporations in countries such as the United States, the United Kingdom, and South Korea has been associated with another organization, “Ruby Sleet.” These hackers intend to obtain military secrets, which will help North Korea achieve its strategic objectives.

North Korean spies are now employing artificial intelligence to create phony identities and manipulate social media to improve their recruitment attempts. This enables them to circumvent standard security measures and target enterprises more effectively.

North Korean hacker gangs have been active in the cryptocurrency business for years, employing similar tactics to attack crypto companies. Recently, in 2024, allegations surfaced that multiple cryptocurrency projects had been hacked by ransomware masquerading as job offers. Hackers compromise a victim’s private keys when they click on a fraudulent link or download a file, allowing them to access and steal their cryptocurrency.

These cyberattacks are not solely for financial benefit. Experts believe that North Korea’s military projects, particularly missile and nuclear development activities, are receiving the stolen cash. As these organizations adapt their techniques and expand their operations, cybersecurity experts advise businesses to be extra attentive and install tighter security processes to avoid falling victim to these more sophisticated cybercrimes.