Buy Crypto
Pay with
USD
USD
Buy & Sell
HOT
Buy and sell crypto via Apple Pay, cards, Google Pay, bank transfers, and more
P2P
0 Fees
Zero fees, 400+ payment options, and seamless cryptocurrency buying & selling
Gate Card
Offer easy crypto transactions globally
Markets
Trade
Trading Type
Trading Tools
Futures
Futures
Hundreds of contracts settled in USDT or BTC
Options
HOT
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Futures Kickoff
Get prepared for your futures trading
Futures Events
Participate in events to win generous rewards
Demo Trading
Use virtual funds to experience risk-free trading
Earn
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Launchpad
NEW
Be early to the next big token project
Alpha Points
NEW
Trade on-chain assets and enjoy airdrop rewards!
Futures Points
NEW
Earn futures points and claim airdrop rewards
Investment
Community
Square
Gate Fun
Share your post and stay informed about crypto and beyond
Live
moments live
Live crypto market analysis
Chat
Chat with crypto traders
News
What is happening in crypto
web3
Web3
More
Promotions
Beginner's Guide
giveaways
Rewards Hub
Square
Latest
Hot
News
Profile

Hackers impersonate job seekers to infiltrate crypto companies? A leading exchange exposes a new type of attack method

HashBardvip
robot
Abstract generation in progress

【Crypto World】Security Alert Incoming. A senior executive from a leading compliant platform recently exposed a hacking incident—North Korean hackers are forging identities and infiltrating the recruitment processes of cryptocurrency companies, attempting to steal assets from within. Even more outrageous, they have spent hundreds of thousands of dollars to bribe customer service staff, aiming to directly steal platform permissions and user information.

This approach is truly “social engineering” at its finest. In response to this wave of attacks, the exchange has already launched a strong defense—requiring employees to undergo fingerprint recognition, biometric verification, and multiple authentication methods. This is not only a countermeasure against hackers but also a wake-up call for the entire crypto industry: when assets become valuable enough, threats shift from technical to personnel levels.

Many industry practitioners, upon seeing this case, have stated that it serves as a reminder for all exchanges and wallet service providers to strengthen employee screening and internal security procedures. After all, firewalls can block malicious code, but they can’t resist the temptation of a check.

View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • 6
  • Repost
  • Share
Comment
0/400
WhaleWatchervip
· 12-20 10:29
North Korean hackers are truly clever; using money to bribe people is more ruthless than hacking codes... Hundreds of thousands of dollars in bribes, are exchange employees so lacking in resilience? Firewalls are indeed useless; the biggest vulnerability is human nature. Now all major exchanges should be panicking; insider threats are unstoppable. Why not just give reliable people a raise to keep them instead of risking headhunting? Peers should remind each other; the hiring process needs to be as strict as a police investigation. Is having a lot of money enough to do whatever you want? This social engineering attack is outrageous. Biometric recognition is good, but the key is to trust the people who are allowed in. Where do the hackers get their money from? That’s also worth pondering.
View OriginalReply0
LiquidationTherapistvip
· 12-20 08:50
Uh... hundreds of thousands of dollars in bribes to employees? These days, people's hearts are really easier to crack than code. --- North Korea is really on a roll, going as far as infiltrating the recruitment process... I knew it, you can never fully defend against social engineering. --- Is biometric authentication useful? What if an employee is truly swayed... As long as the money is in place, everything is negotiable. --- Why is it always the recruitment department that has issues? Why are exchange HR people so easy to phish? --- "Firewalls can't stop checks"—that's a classic... It's very true. --- An exchange now has to implement biometric authentication. What does that say? It shows that our circle is really unsafe. --- It's North Korea again... These guys really treat cryptocurrency like an ATM. --- Daring to spend hundreds of thousands on bribes, they must have spent a lot of effort scouting beforehand... Terrifying. --- I just want to know how those employees who were bribed are doing now. They probably got arrested directly. --- So, insiders are more dangerous than external hackers. This was a textbook-level social engineering attack.
View OriginalReply0
PumpDetectorvip
· 12-20 08:50
ngl the real exploit here isn't the spear phishing... it's that they're throwing six figures at customer service reps. that's the part nobody talks about but everyone knows works. classic human layer vulnerability, been saying this since the gox days
Reply0
ForkThisDAOvip
· 12-20 08:49
North Korean hackers are really ruthless this time, trying to buy off employees with just hundreds of thousands of dollars. Firewalls are indeed useless. --- Social engineering has reached this level, which shows that our money is really tempting. --- Even hundreds of thousands of dollars can't stop biometric authentication; hackers need to upgrade their methods. --- I've always said, the weakest link is always people, not code. --- Now it's settled, job interviews need to be as strict as customs checks, and job seekers must feel wronged. --- Firewalls block code but can't stop human nature—that's the point. --- Bribing customer service staff is really turning social engineering into an art form. --- Internal security procedures? Many exchanges probably don't take this seriously at all. --- Using all biometric methods like fingerprint recognition, how bad must the employee experience be? --- A check can fix the defense line—does that even count as a defense line?
View OriginalReply0
TrustMeBrovip
· 12-20 08:35
Hundreds of thousands of dollars in bribes to customer service, this hacker group really dares to spend money, feeling more ruthless than technical attacks. Biometric systems are being implemented, requiring job seekers to scan their faces, but privacy and security are truly hard to balance. Firewalls can't stop the temptation of checks; this saying hits home, indicating that no matter how high the salary, internal threats can't be fully prevented. North Korean hackers play like this, the industry needs to thoroughly re-evaluate recruitment and internal audit processes. I just want to know what happened to those employees who were bribed—were they directly fired or what? Social engineering attacks are actually more terrifying than 0day exploits because humans are always the biggest vulnerability.
View OriginalReply0
BearMarketBardvip
· 12-20 08:28
North Korean hackers are starting to use social engineering techniques. This industry really leaves no stone unturned. --- Hundreds of thousands of dollars spent on employees. How much money do you have to make to dare to play like this? Or are we earning too little? --- Firewalls can't block people's hearts, even if they block code. Truly insightful... Feels like this warning came a bit late. --- Damn, even the recruitment process can become a breakthrough point. Exchanges should reflect on this. --- Biometric verification is a powerful move, but I suspect some people still can't resist those hundreds of thousands of dollars. --- That's why I don't dare work at an exchange—being targeted by hackers every day must be exhausting. --- Wait, are North Korean hackers now so particular? Do they even impersonate job seekers?
View OriginalReply0
  • Pin
Sitemap
Trade Crypto Anywhere Anytime
qrCode
Scan to download Gate App
Community
  • 简体中文
  • English
  • Tiếng Việt
  • 繁體中文
  • Español
  • Русский
  • Français (Afrique)
  • Português (Portugal)
  • Bahasa Indonesia
  • 日本語
  • بالعربية
  • Українська
  • Português (Brasil)
    • About UsCareersNewsroomSponsor of Oracle Red Bull RacingFC Inter Official Sleeve PartnerUser AgreementRisk WarningPrivacy PolicyCookie PolicyMedia KitProof of ReservesLicenseSecurityGateToken (GT)GUSDGate ChainGate EventsLaw EnforcementSummitsGate Ventures
    P2PConvert & Block TradingSpot TradingFutures TradingStocksAlphaMarginLeveraged TokensNFTGate PayGate LifeGift CardGate OTCGate CharityGate ShopWeb3Gate Perp DEXGate Vault
    VIP BenefitsInstitutionalUser FeedbackAnnouncementFeesHelp CenterSubmit a RequestListingSmart Contract SecurityDevelopersVerification SearchP2P Merchant ApplicationAffiliate ProgramCrypto CalendarCross-Chain Solution
    Gate LearnCrypto CoursesCrypto GlossaryCryptocurrency PricesBig DataBitcoin HalvingEthereum (ETH) UpgradeCrypto WikiCrypto Calculator