North Korea “IT Workers” increases prohibited cyber activity across Europe with eye to blockchain projects, Google Cloud warned to A Wednesday report.
Projects built on the popular Solana network, including applications and job boards, were injured by rising attacks. Republic of Korean democratic people (DPRK operatives) indicate as a legit remote worker to enter companies, obtain critical systems and steal sensitive data that is likely to be sold to “generate revenue for the regime.”
The increased threat to Europe is a transition from a heavy US focus because DPRK-related creatures face heat from DOJ’s accusations and lighter lease of investigation.
The report revealed that one of the said workers had juggled 12 fake personas across the US and Europe and sought a job by making references, developing a relationship with job recruits, and using the additional personas they control to vouch for their credentials.
It’s not like workers are lacking in coding chops either: workers are found to be taking projects derived from the token hosting platform using Next.JS, React and CosmossDK, and Golang, and even create an entire Social -based work -based job market.
More projects associated with blockchain involved in the development of anchor and rust intelligent contracts. A worker has even developed an application of artificial intelligence (AI) using electron, next.js, and blockchain applications.
A major culprit can be workplaces to let employees use their own devices.
“Google Cloud believes that IT workers have identified the BYOD environment as potentially ripe for their schemes, and in January 2025, its workers are now conducting operations against their employers in these situations,” the report said.
“The global expansion, extortion tactics, and the use of virtualized infrastructure all features the appropriate techniques used by DPRK IT workers.”
DPRK entities and hacking groups are one of the biggest actors in the threat to the crypto ecosystem, stealing a Approximately $ 1.3 billion From the projects in 2024 and conducted a $ 1.5 billion hack at the Crypto Exchange Bybit just in February.
