ChainCatcher reports that, according to Cointelegraph, the U.S. cybersecurity firm Mandiant, a subsidiary of Google Cloud, has discovered that North Korea-linked threat groups are increasing social engineering attacks targeting cryptocurrency and fintech companies.
The threat group (codenamed UNC1069) has deployed seven malicious software suites, including newly discovered SILENCELIFT, DEEPBREATH, and CHROMEPUSH, aimed at obtaining sensitive data and stealing digital assets. The attackers exploit compromised Telegram accounts and use AI-generated deepfake videos to lure victims into fake Zoom meetings. Mandiant has been tracking this group since 2018, but advances in AI have helped the group expand its malicious activities since November 2025. In one intrusion, the attackers used stolen cryptocurrency founder Telegram accounts to initiate contact and employed a so-called ClickFix attack to trick victims into executing “troubleshooting” commands containing hidden instructions.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Tether Freezes $4.2B in USDT Linked to Criminal Activity
Tether has frozen approximately $4.2 billion in USDT linked to illegal activities, demonstrating its commitment to fighting crypto crime. The action, which hasn't destabilized USDT’s market, emphasizes compliance and enhances user trust in the stablecoin.
Coinfomania51m ago
Axiom Employee Allegedly Exploits Dashboard for Insider Trading
Allegations against Axiom Exchange reveal that Broox Bauer exploited internal dashboards to track private wallets for insider trading schemes, targeting high-volume traders. The lack of access controls raises significant security concerns, prompting calls for investigation.
CryptoFrontNews3h ago
Former Mt. Gox CEO proposes hard fork to recover $5.2 billion USD worth of Bitcoin from the 2011 theft
Mark Karpelès, the former CEO of the crypto exchange that filed for bankruptcy, Mt. Gox, has just announced a proposal to execute a hard fork of Bitcoin to recover approximately 79,956 BTC — worth over $5.2 billion at current prices — from a "sleeping" address linked to the exchange's 2011 hack.
The proposal is to...
TapChiBitcoin5h ago
Minnesota considers legislation to ban counterfeit cryptocurrency vending machines
Minnesota is facing issues with scam cryptocurrency vending machines, and law enforcement agencies recommend legislation to ban these devices, while crypto industry stakeholders advocate for increased regulation. The scam machines particularly target low-income seniors, resulting in severe losses for many victims. Although relevant laws have been enacted, their effectiveness is limited, and there are differing opinions among parties on how to prevent scams.
ChainNewsAbmedia6h ago
OpenAI fires employee suspected of insider trading on Polymarket! Unusual Whales flagged 77 suspicious transactions
OpenAI has dismissed an employee for using non-public information obtained through work to engage in insider trading on prediction market platforms, violating the company's compliance policies. An on-chain analysis platform has reported that 77 suspicious transactions have been flagged, involving internal OpenAI information. The issue of insider trading in prediction markets continues to attract attention, and the misuse of internal information within the tech industry has become a new challenge.
動區BlockTempo7h ago
Tether freezes $4.2 billion USD Tether related to illegal activities
Tether has frozen approximately $4.2 billion in USDT related to illegal activities, with $3.5 billion this year alone. They also collaborated with the U.S. Department of Justice to freeze $61 million linked to large-scale crypto fraud. USDT's circulating supply has surpassed $180 billion, reinforcing its status as the largest stablecoin. Tether can remotely freeze tokens at law enforcement's request to aid investigations and curb financial crime.
TapChiBitcoin8h ago
