Crypto Exchange Kraken Uncovers North Korean Espionage Plot
By: bitcoinist|2025/05/03 04:15:01
0
Share
Crypto exchange Kraken’s latest security disclosure reads less like a corporate blog post than a field report from the front lines of modern cyber-warfare. Published on 1 May 2025 under the blunt title “How we identified a North Korean hacker who tried to get a job at Kraken,” the account describes in granular detail how a seemingly routine hiring process morphed into what the exchange openly calls “an intelligence gathering operation.” From the first contact, something felt wrong. Recruiters noticed that the applicant “joined under a different name from the one on their resume, and quickly changed it,” a detail the security team later described as the opening note in a symphony of red flags. Moments later, the interview took on an uncanny timbre: “the candidate occasionally switched between voices, indicating that they were being coached through the interview in real time.” Kraken Tricks North Korean Crypto Hacker Kraken’s staff did not rely on intuition alone. The post explains that industry partners had already circulated “a list of email addresses linked to the hacker group,” and one of those addresses matched the résumé in question. Armed with that match, Kraken’s Red Team launched an OSINT dive that exposed what it calls “a larger network of fake identities and aliases” spreading across the crypto employment market. According to the blog, multiple companies had unwittingly hired personas from the same lattice of fabricated résumés, and “one identity in this network was also a known foreign agent on the sanctions list.” Technical inconsistencies began piling up. The exchange recounts how the applicant relied on “remote colocated Mac desktops but interacted with other components through a VPN,” a configuration favoured by operators who need to launder location data. Investigators tied the résumé to a GitHub profile containing an email address that “had been exposed in a past data breach,” and finally concluded that the primary government ID “appeared to be altered, likely using details stolen in an identity theft case two years prior.” With the evidence mounting, Kraken opted for misdirection rather than immediate rejection. The company advanced the applicant through successive stages—in effect baiting the hook. “Instead of tipping off the applicant, our security and recruitment teams strategically advanced them through our rigorous recruitment process – not to hire, but to study their approach,” the blog states. The denouement came in what should have been an informal “chemistry interview” with Chief Security Officer Nick Percoco. The applicant did not realise that every pleasantry was laced with a test. Percoco and his colleagues asked for live two-factor confirmations: show your government ID on camera, report your physical location, name a few local restaurants. “At this point,” the post recounts, “the candidate unraveled. Flustered and caught off guard, they struggled with the basic verification tests, and couldn’t convincingly answer real-time questions about their city of residence or country of citizenship.” Percoco subsequently distilled the lesson from the disclosure: “Don’t trust, verify. This core crypto principle is more relevant than ever in the digital age. State-sponsored attacks aren’t just a crypto, or US corporate, issue – they’re a global threat. Any individual or business handling value is a target, and resilience starts with operationally preparing to withstand these types of attacks .” The blog underscores that the crypto sector’s attack surface is no longer confined to code repositories or hot-wallet infrastructure; it extends to the HR inbox. “Not all attackers break in, some try to walk through the front door,” Kraken writes, adding that “Generative AI is making deception easier, but isn’t foolproof... genuine candidates will usually pass real-time, unprompted verification tests.” In a concluding reflection on organisational culture, the post argues that “a culture of productive paranoia is key. Security isn’t just an IT responsibility. In the modern era, it’s an organizational mindset.” Kraken closes its narrative with a reminder that the candidate was part of the North Korean campaign which, by third-party estimates cited in the post, siphoned more than $650 million from crypto firms in 2024. The message is sober and unsentimental: “Sometimes, the biggest threats come disguised as opportunities.” At press time, BTC traded at $96,825. Featured image created with DALL.E, chart from TradingView.com
You may also like
A pre-announced harvesting case: After the cryptocurrency price dropped by 99%, the public chain Saga exited to transform into AI
True failure often isn't a single price drop, but rather a pricing mechanism that repeatedly rewards those who tell stories while repeatedly punishing those who believe in the stories.
Ethereum Foundation Report: A Basic Guide to Ethereum for Governments and Financial Institutions
The Ethereum Foundation has released this non-technical introductory report aimed at government officials, central banks, regulators, and corporate decision-makers, explaining how Ethereum works, how it is governed, how it differs from other blockchains, and how institutions and governments are alre...
Portugal 2-1 Croatia: Ronaldo's 20-Year Knockout-Stage Drought Ends With a Debt Finally Collected
Portugal beat Croatia 2-1 in the 2026 global football championship's knockout rounds as Ronaldo scored his first-ever knockout-stage goal, Gonçalo Ramos struck a stoppage-time winner, and VAR ruled out a late equalizer for offside.
Bitcoin Price Prediction July 2026: Will BTC Recover to $70K or Drop Below $55K?
Bitcoin price prediction for July 2026: Can BTC recover to $70,000 or fall below $55,000? Explore ETF flows, key support levels, Fed outlook, and our Bitcoin forecast.
A South Korean company that learned the strategy of hoarding coins, from a bull market to delisting?
When the overall momentum of the Korean stock market is strong, this batch of cryptocurrency concept stocks, branded as the "Korean version of Strategy," finds itself at a crossroads of life and death.
Where is Zhao Changpeng's billion-dollar investment going? YZi Labs' investment landscape fully revealed
Zhao Changpeng's billion-dollar new "family office" YZi Labs investment landscape revealed: 70% of the funds are committed to the crypto ecosystem, while 30% are cross-industry bets on AI and biotechnology, launching a new capital experiment in the post-Binance era.
Semiconductor stocks plummet, yet Anthropic wants to create a 2nm chip
Abandoning TSMC and teaming up with Samsung. Anthropic launches a self-developed 2nm chip program, challenging Nvidia and starting a battle to break through computing power costs.
WEEX API Broker Program: Turn Your Trading Platform Into a Revenue Engine
Become a WEEX API Broker and earn up to 70% trading fee sharing. Get institutional-grade liquidity, OAuth Fast Connect, and a 4-5 day integration for your AI trading platform, bot, or signal community.
How to choose between buying discounted ETH, Bitmine, and SharpLink?
The answer may not lie in whose story is told better, but in specific dimensions such as cost of holding, financing ability, liquidity, and whether the narrative can be realized.
Do you want to buy CRCL?
A detailed breakdown of Circle's business fundamentals and valuation logic: The panic over OUSD and the market correction have triggered a short-term mispricing, presenting an opportunity for left-side positioning and legislative speculation below $60.
Wosh: Inflation has cooled in recent weeks, AI is reshaping the economy, and forward guidance has lost its necessity
Federal Reserve Chairman Waller clearly stated at the ECB forum that the Fed will abandon forward guidance on interest rates, with future decisions relying entirely on real-time economic data. He noted that inflation risks in the U.S. have decreased over the past four weeks, but the ultimate impact ...
The most secretive AI winner
A century-old company that sells toilets and produces MSG has seen its stock price soar by "positioning" core materials for AI chips. This article clarifies the explosive opportunities for domestic substitution of semiconductor materials in the A-share market.
Looking at Stripe's ambitions and the future of stablecoins from OUSD
Stripe enters the stablecoin network battle with OUSD, a comprehensive look at the third paradigm evolution of digital dollars and the new infrastructure for global payments in the AI era.
From Pump.fun to Collector Crypt: Has Solana's income throne changed hands?
The revenue from consumer applications on Solana is no longer solely reliant on meme coin issuance, but is gradually spreading to more consumption scenarios.
Dan Bin's latest speech: Don't miss out on a great era
Don't let hesitation trap your steps, and don't let shortsightedness waste the passing years—make sure not to miss this magnificent era that belongs to us.
Robinhood launches its own blockchain, no longer wanting to be a tenant on others' chains
While laying off employees and issuing bonds, it is the predictive market business that temporarily supports the income.
Why Tokenized Stocks Are Booming in 2026 While Crypto Is Still Struggling
Why are tokenized stocks booming while the crypto market struggles? Explore the latest 2026 data, institutional adoption, and what it means for traders.
Former ByteDance employee's account: How I started with two Pinduoduo hard drives and made six times the profit with Seagate to achieve financial freedom?
A programmer from a big tech company bought hard drives on Pinduoduo and, following clues, managed to accurately capture the sixfold rising stock Seagate using the "finding daily anomalies + 13F institutional verification" framework, making a wild profit of $400,000 and achieving financial freedom.
A pre-announced harvesting case: After the cryptocurrency price dropped by 99%, the public chain Saga exited to transform into AI
True failure often isn't a single price drop, but rather a pricing mechanism that repeatedly rewards those who tell stories while repeatedly punishing those who believe in the stories.
Ethereum Foundation Report: A Basic Guide to Ethereum for Governments and Financial Institutions
The Ethereum Foundation has released this non-technical introductory report aimed at government officials, central banks, regulators, and corporate decision-makers, explaining how Ethereum works, how it is governed, how it differs from other blockchains, and how institutions and governments are alre...
Portugal 2-1 Croatia: Ronaldo's 20-Year Knockout-Stage Drought Ends With a Debt Finally Collected
Portugal beat Croatia 2-1 in the 2026 global football championship's knockout rounds as Ronaldo scored his first-ever knockout-stage goal, Gonçalo Ramos struck a stoppage-time winner, and VAR ruled out a late equalizer for offside.
Bitcoin Price Prediction July 2026: Will BTC Recover to $70K or Drop Below $55K?
Bitcoin price prediction for July 2026: Can BTC recover to $70,000 or fall below $55,000? Explore ETF flows, key support levels, Fed outlook, and our Bitcoin forecast.
A South Korean company that learned the strategy of hoarding coins, from a bull market to delisting?
When the overall momentum of the Korean stock market is strong, this batch of cryptocurrency concept stocks, branded as the "Korean version of Strategy," finds itself at a crossroads of life and death.
Where is Zhao Changpeng's billion-dollar investment going? YZi Labs' investment landscape fully revealed
Zhao Changpeng's billion-dollar new "family office" YZi Labs investment landscape revealed: 70% of the funds are committed to the crypto ecosystem, while 30% are cross-industry bets on AI and biotechnology, launching a new capital experiment in the post-Binance era.
Customer Support:@weikecs
Business Cooperation:@weikecs
Quant Trading & MM:bd@weex.com
VIP Program:support@weex.com





