The United States Federal Bureau of Investigation (FBI) has raised the alarm for employees at digital asset firms, warning them about an ongoing North Korean scheme to steal cryptocurrency. In a notice issued on September 3, the FBI highlighted that North Korean cybercriminals are targeting workers at decentralized finance and cryptocurrency companies through complex social engineering campaigns.
These schemes involve scammers posing as potential employers or investors and impersonating well-known figures in the tech industry to lure victims. The scammers often provide links to “pre-employment tests” or other downloads, which install malware on the victim’s device. The FBI noted that the attackers are adept at initiating lengthy conversations to build trust and introduce malware in seemingly legitimate ways.
According to the FBI, the cybercriminals are fluent in English and well-versed in cryptocurrency technology, making their tactics even more convincing. Since 2017, North Korean hackers have reportedly stolen around $3 billion in cryptocurrency using similar methods. The notorious Lazarus Group, a North Korean hacking collective, is believed to be behind many of these high-profile crypto thefts.
The FBI has repeatedly warned about various crypto scams, including those where fraudsters impersonate employees of cryptocurrency exchanges or law firms to gain access to user accounts. In June, the agency reported cases where scammers posed as law firm representatives offering fake crypto recovery services, further underscoring the growing threat to the digital asset sector.