ChainCatcher reports that, according to Cointelegraph, the U.S. cybersecurity firm Mandiant, a subsidiary of Google Cloud, has discovered that North Korea-linked threat groups are increasing social engineering attacks targeting cryptocurrency and fintech companies.
The threat group (codenamed UNC1069) has deployed seven malicious software suites, including newly discovered SILENCELIFT, DEEPBREATH, and CHROMEPUSH, aimed at obtaining sensitive data and stealing digital assets. The attackers exploit compromised Telegram accounts and use AI-generated deepfake videos to lure victims into fake Zoom meetings. Mandiant has been tracking this group since 2018, but advances in AI have helped the group expand its malicious activities since November 2025. In one intrusion, the attackers used stolen cryptocurrency founder Telegram accounts to initiate contact and employed a so-called ClickFix attack to trick victims into executing “troubleshooting” commands containing hidden instructions.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Resolv Hack Mints $80M Fake USR, Triggers Market Chaos
A security breach at Resolv Labs allowed attackers to mint 80 million uncollateralized USR stablecoins, causing a price collapse and market instability. Resolv paused contracts, burned illicit tokens, and confirmed $141 million in secure collateral.
CryptoFrontNews7m ago
Hacked for $110 Million as the Final Straw! DeFi Protocol Balancer's Development Company to Cease Operations
Trading Protocol Balancer Faces Major Turning Point, Founder Announces Balancer Labs Will Cease Operations, Protocol to Continue in Streamlined Form. This decision stems from security vulnerabilities and legal risks, with the current operational model becoming unsustainable. Despite significant TVL decline, Balancer still generates over $1 million in annualized fee revenue. The team has proposed an aggressive restructuring plan that includes token buybacks, revenue structure reforms, and focuses on five core product lines. Following the transformation, the team will concentrate on enhancing the protocol's competitiveness.
区块客1h ago
Venus Flash Loan Attacker Transferred 1743 ETH to New Address 50 Minutes Ago
According to analyst monitoring, the flash loan attacker on the Venus platform transferred 1743 ETH, with the address holdings reaching 7450 ETH, and funds being used for Aave yield farming. Venus has experienced multiple security incidents since 2021, with losses exceeding $270 million.
GateNews2h ago
Stablecoin USR Suddenly Crashes and Depegs! Resolv Reveals "Minting Vulnerability" Exploited by Hackers, Who Steal $25 Million
DeFi protocol Resolv suffered an attack on March 22, where hackers minted 80 million stablecoins USR at low cost and cashed out approximately $25 million, causing USR to depeg and triggering market volatility. The attack stemmed from a lack of security measures on the protocol's privileged accounts, impacting overall liquidity and affecting the lending market. Resolv subsequently suspended the protocol and emphasized that collateral pools remained unaffected, but experts believe the hidden losses caused by the incident are significant.
区块客4h ago
Husband accuses wife of stealing over 2,000 bitcoins! Judge: The plaintiff has a very high chance of winning.
The UK High Court is hearing a Bitcoin theft case in which the plaintiff alleges his estranged wife secretly stole 2,323 Bitcoin in 2023. In the case, the plaintiff used audio evidence to prove that the defendant and her sister planned to transfer the Bitcoin. The judge found a high probability of the plaintiff prevailing and ordered asset freezing while dismissing some claims, recommending expedited trial proceedings.
区块客4h ago
7 Associated Accounts Precisely Bet on US-Israel Military Actions, Earning Approximately $1 Million in Profits Over Two Years
Investigation found that 7 associated accounts on a certain prediction market platform made precise bets against U.S. airstrikes over the past two years, accumulating profits of approximately $1 million, allegedly involving insider trading.
GateNews5h ago
