北韓駭客加強針對加密貨幣的社會工程詐騙力度

據 Cointelegraph 報道，據報道，北韓駭客加強了旨在竊取加密貨幣的社會工程詐騙

North Korean hackers are reportedly ramping up their social engineering scams to steal cryptocurrencies, having infiltrated several large, multinational information technology companies, according to a new report by Cointelegraph.

據 Cointelegraph 的一份新報告稱，北韓駭客正在加大社交工程詐騙力度，以竊取加密貨幣，並已滲透到多家大型跨國資訊科技公司。

At the Cyberwarcon cybersecurity conference, researchers identified two North Korean hacker groups, "Sapphire Sleet" and "Ruby Sleet," as being central to these operations.

在 Cyber​​warcon 網路安全會議上，研究人員確定了兩個北韓駭客組織「Sapphire Sleet」和「Ruby Sleet」是這些行動的核心。

Sapphire Sleet has been targeting individuals through fraudulent employment schemes, posing as legitimate recruiters to lure victims into interviews or job offers. During these interactions, the hackers infect the victims' computers with malware disguised as PDF files or malicious links.

Sapphire Sleet 一直透過欺詐性就業計畫來針對個人，冒充合法的招募人員來引誘受害者接受面試或提供工作機會。在這些互動過程中，駭客利用偽裝成 PDF 檔案或惡意連結的惡意軟體感染受害者的電腦。

On the other hand, Ruby Sleet has managed to infiltrate aerospace and defense contractors in the United States, the United Kingdom, and South Korea, aiming to steal military secrets.

另一方面，Ruby Sleet 成功滲透到美國、英國和韓國的航空航天和國防承包商中，旨在竊取軍事機密。

The report also highlights that North Korean IT workers are using fake identities, crafted through AI, social media, and voice-changing technologies, to infiltrate companies and execute recruitment scams.

該報告還強調，北韓 IT 員工正在使用透過人工智慧、社群媒體和變聲技術製作的虛假身份滲透到公司並實施招聘騙局。

The threat posed by North Korean hackers to the cryptocurrency industry is not new. Prior to the Cyberwarcon warning, hackers linked to the DPRK regime had already been targeting cryptocurrency firms using similar tactics.

北韓駭客對加密貨幣產業的威脅並不新鮮。在網路戰警告之前，與北韓政權有關的駭客已經使用類似的策略瞄準加密貨幣公司。

In August, onchain investigator ZackXBT identified 21 developers, believed to be North Koreans, working on various crypto projects under fake identities.

8 月，鏈上調查員 ZackXBT 發現了 21 名開發人員，據信是朝鮮人，他們以虛假身份從事各種加密項目。

In September, the Federal Bureau of Investigation (FBI) issued a warning about North Korean hackers targeting crypto companies and decentralized finance projects with malware disguised as employment offers. Once users downloaded the malware or clicked on malicious links, their private keys were at risk of being stolen.

9 月，美國聯邦調查局 (FBI) 發出警告，稱北韓駭客利用偽裝成就業機會的惡意軟體瞄準加密貨幣公司和去中心化金融計畫。一旦用戶下載了惡意軟體或點擊了惡意鏈接，他們的私鑰就有被盜的風險。

In October, concerns arose within the Cosmos ecosystem regarding its Liquid Staking Module, which was allegedly developed by North Korean developers. Jacob Gadikian, a Cosmos ecosystem developer, remarked that the individuals behind the LSM are among the world's most skilled and prolific crypto thieves.

10 月，Cosmos 生態系統內部對其 Liquid Stake 模組產生了擔憂，據稱該模組是由北韓開發商開發的。 Cosmos 生態系統開發人員 Jacob Gadikian 表示，LSM 背後的個人是世界上最熟練、最多產的加密貨幣竊賊之一。

This prompted several security audits of the Cosmos Liquid Staking Module due to fears of backdoors and other malicious code.

由於擔心後門和其他惡意程式碼，這促使對 Cosmos Liquid Stake 模組進行了許多安全審計。

The ongoing threat from North Korean hackers underscores the need for heightened cybersecurity measures within the cryptocurrency and IT sectors.

來自北韓駭客的持續威脅凸顯了加密貨幣和 IT 領域加強網路安全措施的必要性。