• bitcoinBitcoin (BTC) $ 73,258.00
  • ethereumEthereum (ETH) $ 2,256.02
  • tetherTether (USDT) $ 1.00
  • xrpXRP (XRP) $ 1.35
  • bnbBNB (BNB) $ 608.55
  • usd-coinUSDC (USDC) $ 0.999814
  • solanaSolana (SOL) $ 84.12
  • tronTRON (TRX) $ 0.320240
  • staked-etherLido Staked Ether (STETH) $ 2,265.05
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.03
  • dogecoinDogecoin (DOGE) $ 0.093094
  • whitebitWhiteBIT Coin (WBT) $ 53.45
  • usdsUSDS (USDS) $ 0.999813
  • hyperliquidHyperliquid (HYPE) $ 43.48
  • leo-tokenLEO Token (LEO) $ 10.12
  • wrapped-stethWrapped stETH (WSTETH) $ 2,779.67
  • cardanoCardano (ADA) $ 0.241154
  • bitcoin-cashBitcoin Cash (BCH) $ 428.04
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 76,243.00
  • chainlinkChainlink (LINK) $ 9.00
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.998762
  • moneroMonero (XMR) $ 347.31
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 2,466.93
  • zcashZcash (ZEC) $ 363.22
  • ethena-usdeEthena USDe (USDE) $ 1.00
  • canton-networkCanton (CC) $ 0.150592
  • wrapped-eethWrapped eETH (WEETH) $ 2,465.31
  • stellarStellar (XLM) $ 0.152555
  • memecoreMemeCore (M) $ 2.75
  • susdssUSDS (SUSDS) $ 1.08
  • daiDai (DAI) $ 0.999844
  • litecoinLitecoin (LTC) $ 53.68
  • usd1-wlfiUSD1 (USD1) $ 0.999340
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 76,366.00
  • avalanche-2Avalanche (AVAX) $ 9.40
  • paypal-usdPayPal USD (PYUSD) $ 1.00
  • rainRain (RAIN) $ 0.007905
  • wethWETH (WETH) $ 2,268.37
  • hedera-hashgraphHedera (HBAR) $ 0.085871
  • suiSui (SUI) $ 0.933153
  • the-open-networkToncoin (TON) $ 1.43
  • usdt0USDT0 (USDT0) $ 0.998824
  • shiba-inuShiba Inu (SHIB) $ 0.000006
  • ravedaoRaveDAO (RAVE) $ 13.27
  • crypto-com-chainCronos (CRO) $ 0.068765
  • hashnote-usycCircle USYC (USYC) $ 1.12
  • tether-goldTether Gold (XAUT) $ 4,717.73
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.079519
  • bittensorBittensor (TAO) $ 255.67
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.22
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • pax-goldPAX Gold (PAXG) $ 4,730.29
  • mantleMantle (MNT) $ 0.673508
  • global-dollarGlobal Dollar (USDG) $ 0.999894
  • polkadotPolkadot (DOT) $ 1.19
  • uniswapUniswap (UNI) $ 3.13
  • nearNEAR Protocol (NEAR) $ 1.40
  • falcon-financeFalcon USD (USDF) $ 0.998336
  • okbOKB (OKB) $ 83.67
  • skySky (SKY) $ 0.074442
  • little-pepe-5Little Pepe (LILPEPE) $ 2.16
  • pi-networkPi Network (PI) $ 0.165484
  • aster-2Aster (ASTER) $ 0.663982
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.15
  • htx-daoHTX DAO (HTX) $ 0.000002
  • pepePepe (PEPE) $ 0.000004
  • usddUSDD (USDD) $ 1.00
  • aaveAave (AAVE) $ 96.74
  • ripple-usdRipple USD (RLUSD) $ 1.00
  • janus-henderson-anemoy-treasury-fundJanus Henderson Anemoy Treasury Fund (JTRSY) $ 1.10
  • internet-computerInternet Computer (ICP) $ 2.47
  • bitget-tokenBitget Token (BGB) $ 1.90
  • bfusdBFUSD (BFUSD) $ 1.00
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.12
  • ethereum-classicEthereum Classic (ETC) $ 8.34
  • ondo-financeOndo (ONDO) $ 0.250744
  • kucoin-sharesKuCoin (KCS) $ 8.55
  • gatechain-tokenGate (GT) $ 6.74
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.00
  • pump-funPump.fun (PUMP) $ 0.001854
  • quant-networkQuant (QNT) $ 75.05
  • render-tokenRender (RENDER) $ 1.89
  • worldcoin-wldWorldcoin (WLD) $ 0.300667
  • morphoMorpho (MORPHO) $ 1.71
  • jito-staked-solJito Staked SOL (JITOSOL) $ 124.46
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.23
  • algorandAlgorand (ALGO) $ 0.103720
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 2,404.69
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.084104
  • nexoNEXO (NEXO) $ 0.889209
  • binance-peg-wethBinance-Peg WETH (WETH) $ 2,262.26
  • kaspaKaspa (KAS) $ 0.032273
  • rocket-pool-ethRocket Pool ETH (RETH) $ 2,631.35
  • cosmosCosmos Hub (ATOM) $ 1.73
  • usdtbUSDtb (USDTB) $ 0.999851
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999945
  • ethenaEthena (ENA) $ 0.096376
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 11.05
  • wbnbWrapped BNB (WBNB) $ 759.61
  • blockchain-capitalBlockchain Capital (BCAP) $ 83.06
  • ignition-fbtcFunction FBTC (FBTC) $ 76,389.00
  • filecoinFilecoin (FIL) $ 0.898226
  • aptosAptos (APT) $ 0.855539
  • flare-networksFlare (FLR) $ 0.007922
  • arbitrumArbitrum (ARB) $ 0.111834
  • ousgOUSG (OUSG) $ 114.87
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.11
  • justJUST (JST) $ 0.075263
  • official-trumpOfficial Trump (TRUMP) $ 2.84
  • hash-2Provenance Blockchain (HASH) $ 0.011453
  • binance-staked-solBinance Staked SOL (BNSOL) $ 108.24
  • midnight-3Midnight (NIGHT) $ 0.039038
  • beldexBeldex (BDX) $ 0.080384
  • xdce-crowd-saleXDC Network (XDC) $ 0.030685
  • yldsYLDS (YLDS) $ 0.999755
  • vechainVeChain (VET) $ 0.006901
  • jupiter-exchange-solanaJupiter (JUP) $ 0.165903
  • new-x-ceo-is-backNEW X CEO IS BACK (XFLOKI) $ 0.506041
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999720
  • stable-2​​Stable (STABLE) $ 0.026960
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 76,461.00
  • ghoGHO (GHO) $ 0.999671
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 76,491.00
  • siren-2Siren (SIREN) $ 0.777806
  • usual-usdUsual USD (USD0) $ 0.998619
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.232925
  • clbtcclBTC (CLBTC) $ 76,920.00
  • pancakeswap-tokenPancakeSwap (CAKE) $ 1.59
  • dashDash (DASH) $ 40.53
  • bonkBonk (BONK) $ 0.000006
  • layerzeroLayerZero (ZRO) $ 1.98
  • true-usdTrueUSD (TUSD) $ 0.999695
  • a7a5A7A5 (A7A5) $ 0.012424
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 2,419.84
  • dexeDeXe (DEXE) $ 10.05
  • adi-tokenADI (ADI) $ 4.31
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 33.97
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.672247
  • tbtctBTC (TBTC) $ 70,942.00
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.006804
  • wrappedm-by-m0WrappedM by M0 (WM) $ 1.00
  • euro-coinEURC (EURC) $ 1.18
  • monadMonad (MON) $ 0.034492
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.03
  • blockstackStacks (STX) $ 0.217914
  • first-digital-usdFirst Digital USD (FDUSD) $ 1.00
  • venice-tokenVenice Token (VVV) $ 8.66
  • c8ntinuumc8ntinuum (CTM) $ 0.087592
  • chilizChiliz (CHZ) $ 0.036790
  • mantle-staked-etherMantle Staked Ether (METH) $ 2,455.82
  • decredDecred (DCR) $ 21.73
  • tezosTezos (XTZ) $ 0.345001
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999983
  • sei-networkSei (SEI) $ 0.055184
  • resolv-wstusrResolv wstUSR (WSTUSR) $ 1.13
  • kinesis-goldKinesis Gold (KAU) $ 153.51
  • cocaCOCA (COCA) $ 1.30
  • usxUSX (USX) $ 0.999437
  • hastra-primePRIME (PRIME) $ 1.03
  • sun-tokenSun Token (SUN) $ 0.017963
  • doge-strategyDoge Strategy (DOGESTR) $ 0.288297
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 2,406.26
  • aerodrome-financeAerodrome Finance (AERO) $ 0.372685
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 76,200.00
  • apenftAINFT (NFT) $ 0.00000033
  • ether-fiEther.fi (ETHFI) $ 0.418663
  • curve-dao-tokenCurve DAO (CRV) $ 0.214521
  • bittorrentBitTorrent (BTT) $ 0.00000033
  • wrapped-flareWrapped Flare (WFLR) $ 0.009961
  • plasmaPlasma (XPL) $ 0.131845
  • gnosisGnosis (GNO) $ 118.38
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 2,266.86
  • bitcoin-svBitcoin SV (BSV) $ 15.23
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.12
  • edgexedgeX (EDGE) $ 0.877475
  • injective-protocolInjective (INJ) $ 2.98
  • usdaiUSDai (USDAI) $ 0.999467
  • spx6900SPX6900 (SPX) $ 0.313450
  • kinesis-silverKinesis Silver (KAG) $ 76.62
  • binance-peg-xrpBinance-Peg XRP (XRP) $ 1.59
  • conflux-tokenConflux (CFX) $ 0.053929
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 2,443.47
  • lighterLighter (LIT) $ 1.11
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 2,421.84
  • flokiFLOKI (FLOKI) $ 0.000029
  • fraxLegacy Frax Dollar (FRAX) $ 0.994383
  • noonNoon (NOON) $ 0.751949
  • sbtc-2sBTC (SBTC) $ 77,039.00
  • kaiaKaia (KAIA) $ 0.046832
  • lido-daoLido DAO (LDO) $ 0.321494
  • celestiaCelestia (TIA) $ 0.301283
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 115.56
  • doublezeroDoubleZero (2Z) $ 0.077718
  • savings-usddSavings USDD (SUSDD) $ 1.03
  • syrupMaple Finance (SYRUP) $ 0.231580
  • ape-and-pepeApe and Pepe (APEPE) $ 0.000001
  • jasmycoinJasmyCoin (JASMY) $ 0.005318
  • msolMarinade Staked SOL (MSOL) $ 133.18
  • official-foOfficial FO (FO) $ 0.263344
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 2,265.06
Bitcoin

North Korean Hackers Exploit Dev Device, Steal Millions in Crypto

By admin
0 27

North Korean Hackers Exploit Dev Device, Steal Millions in Crypto

A North Korean threat actor, UNC4899, launched a sophisticated attack on a cryptocurrency firm in 2025, stealing millions in digital assets. The hackers tricked a developer into downloading a seemingly legitimate archive as part of an open-source collaboration.

The developer transferred it to a corporate device using AirDrop. As a result, the embedded malicious Python code executed a binary masquerading as a Kubernetes command-line tool. This backdoor enabled attackers to pivot to the cloud, harvest credentials, and manipulate critical infrastructure.

Google Cloud described the attack as a mix of “social engineering, exploitation of personal-to-corporate device peer-to-peer data transfer mechanisms, workflows, and eventual pivot to the cloud to employ living-off-the-cloud (LOTC) techniques.”

Cloud Attackers Drain Crypto via Kubernetes

Once UNC4899 got inside the system, they explored the company’s Kubernetes setup and used stolen service account tokens to gain higher-level access. They even changed multi-factor authentication settings to make entry easier. The hackers then reached sensitive parts of the system that handled network controls and customer information, including cryptocurrency wallets.

Next, they grabbed database login details stored insecurely in the system, accessed the production database, and made changes to user accounts. This included resetting passwords and updating MFA codes for high-value accounts. In the end, the attackers were able to withdraw several million dollars in digital currency.

UNC4899 also targeted the company’s automated development processes to stay hidden in the cloud. They planted commands in Kubernetes deployments so that every time a new pod started, it automatically downloaded a backdoor.

Google suggests that companies keep cloud environments strictly separated, limit peer-to-peer file sharing, and watch for unusual activity in containers. Additionally, organizations should use phishing-resistant multi-factor authentication and strong secrets management to reduce the risk of a breach.

Broader North Korean Cyber Activity

Other North Korea-related groups, such as Konni, are using AI-generated malware with the help of PowerShell to target blockchain developers. These attackers send malicious Discord messages with malware that can steal money and data.

Reports show that over $16.5 million went to North Korean IT workers pretending to be legitimate freelancers in 2025 alone. This shows how risky hiring practices can be and highlights the need for stronger background checks and better cybersecurity awareness.

Source

admin 20019 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.