Kraken reported an incident where a North Korean hacker attempted to gain access to the crypto exchange through a job application. Early in the interview process, the applicant exhibited suspicious behavior, such as using a different name and occasionally changing voices, indicating guidance during the interview. Rather than outright rejecting the candidate, Kraken chose to continue the process to gather intelligence on these tactics. The firm received a warning from industry partners about North Korean actors applying for jobs, which included email addresses linked to hacker groups. This led to the discovery of a web of fake identities used by the applicant. Technical discrepancies were noted, including the use of remote desktops and altered ID documents. The candidate's resume was connected to a GitHub profile linked to a previous data breach. During final interviews, Kraken's security officer devised tests that the applicant failed, ultimately confirming the deception. This incident highlights the ongoing threat of state-sponsored attacks, particularly in the crypto sector.

Source 🔗