• bitcoinBitcoin (BTC) $ 77,307.00
  • ethereumEthereum (ETH) $ 2,311.12
  • tetherTether (USDT) $ 1.00
  • xrpXRP (XRP) $ 1.42
  • bnbBNB (BNB) $ 628.30
  • usd-coinUSDC (USDC) $ 0.999845
  • solanaSolana (SOL) $ 85.64
  • tronTRON (TRX) $ 0.324513
  • staked-etherLido Staked Ether (STETH) $ 2,265.05
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.04
  • dogecoinDogecoin (DOGE) $ 0.097626
  • whitebitWhiteBIT Coin (WBT) $ 54.71
  • usdsUSDS (USDS) $ 0.999789
  • hyperliquidHyperliquid (HYPE) $ 41.18
  • leo-tokenLEO Token (LEO) $ 10.26
  • wrapped-stethWrapped stETH (WSTETH) $ 2,779.67
  • cardanoCardano (ADA) $ 0.248566
  • bitcoin-cashBitcoin Cash (BCH) $ 452.66
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 76,243.00
  • moneroMonero (XMR) $ 377.28
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.998762
  • chainlinkChainlink (LINK) $ 9.30
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 2,466.93
  • zcashZcash (ZEC) $ 353.13
  • canton-networkCanton (CC) $ 0.151808
  • stellarStellar (XLM) $ 0.170775
  • wrapped-eethWrapped eETH (WEETH) $ 2,465.31
  • memecoreMemeCore (M) $ 4.36
  • daiDai (DAI) $ 0.999773
  • susdssUSDS (SUSDS) $ 1.08
  • usd1-wlfiUSD1 (USD1) $ 0.999750
  • litecoinLitecoin (LTC) $ 56.04
  • avalanche-2Avalanche (AVAX) $ 9.31
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 76,366.00
  • hedera-hashgraphHedera (HBAR) $ 0.090487
  • ethena-usdeEthena USDe (USDE) $ 0.999368
  • suiSui (SUI) $ 0.934275
  • wethWETH (WETH) $ 2,268.37
  • shiba-inuShiba Inu (SHIB) $ 0.000006
  • rainRain (RAIN) $ 0.007282
  • paypal-usdPayPal USD (PYUSD) $ 0.999768
  • usdt0USDT0 (USDT0) $ 0.998824
  • the-open-networkToncoin (TON) $ 1.31
  • crypto-com-chainCronos (CRO) $ 0.069845
  • hashnote-usycCircle USYC (USYC) $ 1.12
  • tether-goldTether Gold (XAUT) $ 4,693.24
  • global-dollarGlobal Dollar (USDG) $ 0.999841
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.074954
  • bittensorBittensor (TAO) $ 246.46
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.22
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • pax-goldPAX Gold (PAXG) $ 4,697.03
  • mantleMantle (MNT) $ 0.653788
  • polkadotPolkadot (DOT) $ 1.24
  • uniswapUniswap (UNI) $ 3.23
  • skySky (SKY) $ 0.084145
  • nearNEAR Protocol (NEAR) $ 1.39
  • falcon-financeFalcon USD (USDF) $ 0.996814
  • okbOKB (OKB) $ 84.25
  • pi-networkPi Network (PI) $ 0.170570
  • little-pepe-5Little Pepe (LILPEPE) $ 2.16
  • htx-daoHTX DAO (HTX) $ 0.000002
  • pepePepe (PEPE) $ 0.000004
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.15
  • ripple-usdRipple USD (RLUSD) $ 1.00
  • aster-2Aster (ASTER) $ 0.640555
  • aaveAave (AAVE) $ 94.46
  • usddUSDD (USDD) $ 1.00
  • janus-henderson-anemoy-treasury-fundJanus Henderson Anemoy Treasury Fund (JTRSY) $ 1.10
  • bitget-tokenBitget Token (BGB) $ 1.95
  • internet-computerInternet Computer (ICP) $ 2.42
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.13
  • bfusdBFUSD (BFUSD) $ 0.999696
  • ethereum-classicEthereum Classic (ETC) $ 8.42
  • ondo-financeOndo (ONDO) $ 0.258490
  • kucoin-sharesKuCoin (KCS) $ 8.43
  • gatechain-tokenGate (GT) $ 7.32
  • morphoMorpho (MORPHO) $ 1.85
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.00
  • algorandAlgorand (ALGO) $ 0.115810
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.23
  • united-stablesUnited Stables (U) $ 0.999564
  • pump-funPump.fun (PUMP) $ 0.001733
  • cosmosCosmos Hub (ATOM) $ 2.02
  • jito-staked-solJito Staked SOL (JITOSOL) $ 124.46
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 11.06
  • quant-networkQuant (QNT) $ 70.14
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 2,404.69
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.091761
  • ethenaEthena (ENA) $ 0.106990
  • binance-peg-wethBinance-Peg WETH (WETH) $ 2,262.26
  • render-tokenRender (RENDER) $ 1.78
  • rocket-pool-ethRocket Pool ETH (RETH) $ 2,631.35
  • kaspaKaspa (KAS) $ 0.033256
  • nexoNEXO (NEXO) $ 0.898776
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999945
  • worldcoin-wldWorldcoin (WLD) $ 0.257094
  • arbitrumArbitrum (ARB) $ 0.128216
  • wbnbWrapped BNB (WBNB) $ 759.61
  • aptosAptos (APT) $ 0.962993
  • ignition-fbtcFunction FBTC (FBTC) $ 76,389.00
  • blockchain-capitalBlockchain Capital (BCAP) $ 82.76
  • stable-2​​Stable (STABLE) $ 0.033557
  • filecoinFilecoin (FIL) $ 0.933628
  • justJUST (JST) $ 0.080466
  • flare-networksFlare (FLR) $ 0.007835
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.11
  • dexeDeXe (DEXE) $ 13.62
  • vechainVeChain (VET) $ 0.007297
  • beldexBeldex (BDX) $ 0.080076
  • binance-staked-solBinance Staked SOL (BNSOL) $ 108.24
  • jupiter-exchange-solanaJupiter (JUP) $ 0.170685
  • hash-2Provenance Blockchain (HASH) $ 0.010468
  • ousgOUSG (OUSG) $ 115.03
  • xdce-crowd-saleXDC Network (XDC) $ 0.029920
  • official-trumpOfficial Trump (TRUMP) $ 2.57
  • midnight-3Midnight (NIGHT) $ 0.035767
  • new-x-ceo-is-backNEW X CEO IS BACK (XFLOKI) $ 0.506041
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999720
  • usdtbUSDtb (USDTB) $ 0.999813
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 76,461.00
  • ghoGHO (GHO) $ 0.999134
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 76,491.00
  • usual-usdUsual USD (USD0) $ 0.998289
  • bonkBonk (BONK) $ 0.000006
  • siren-2Siren (SIREN) $ 0.743528
  • clbtcclBTC (CLBTC) $ 76,920.00
  • yldsYLDS (YLDS) $ 0.999993
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.008390
  • chilizChiliz (CHZ) $ 0.048873
  • true-usdTrueUSD (TUSD) $ 1.00
  • pancakeswap-tokenPancakeSwap (CAKE) $ 1.50
  • a7a5A7A5 (A7A5) $ 0.012435
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 2,419.84
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.206773
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.695176
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 33.97
  • dashDash (DASH) $ 35.87
  • tbtctBTC (TBTC) $ 70,942.00
  • euro-coinEURC (EURC) $ 1.17
  • wrappedm-by-m0WrappedM by M0 (WM) $ 1.00
  • edgexedgeX (EDGE) $ 1.27
  • adi-tokenADI (ADI) $ 4.12
  • blockstackStacks (STX) $ 0.226185
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.998109
  • venice-tokenVenice Token (VVV) $ 8.89
  • sei-networkSei (SEI) $ 0.060467
  • c8ntinuumc8ntinuum (CTM) $ 0.087592
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.03
  • mantle-staked-etherMantle Staked Ether (METH) $ 2,455.82
  • tezosTezos (XTZ) $ 0.367535
  • aerodrome-financeAerodrome Finance (AERO) $ 0.422343
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999983
  • layerzeroLayerZero (ZRO) $ 1.54
  • resolv-wstusrResolv wstUSR (WSTUSR) $ 1.13
  • usxUSX (USX) $ 0.999671
  • cocaCOCA (COCA) $ 1.30
  • kinesis-goldKinesis Gold (KAU) $ 148.90
  • ether-fiEther.fi (ETHFI) $ 0.436055
  • monadMonad (MON) $ 0.030311
  • doge-strategyDoge Strategy (DOGESTR) $ 0.288297
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 2,406.26
  • sun-tokenSun Token (SUN) $ 0.018522
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 76,200.00
  • injective-protocolInjective (INJ) $ 3.55
  • bianrensheng币安人生 (BinanceLife) (币安人生) $ 0.349385
  • zebec-networkZebec Network (ZBCN) $ 0.003550
  • spx6900SPX6900 (SPX) $ 0.372162
  • wrapped-flareWrapped Flare (WFLR) $ 0.009961
  • decredDecred (DCR) $ 19.73
  • curve-dao-tokenCurve DAO (CRV) $ 0.223964
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 2,266.86
  • hastra-primePRIME (PRIME) $ 1.03
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.12
  • gnosisGnosis (GNO) $ 122.26
  • olympusOlympus (OHM) $ 20.46
  • lido-daoLido DAO (LDO) $ 0.375275
  • apenftAINFT (NFT) $ 0.00000032
  • bittorrentBitTorrent (BTT) $ 0.00000032
  • binance-peg-xrpBinance-Peg XRP (XRP) $ 1.59
  • celestiaCelestia (TIA) $ 0.347690
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 2,443.47
  • bitcoin-svBitcoin SV (BSV) $ 15.76
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 2,421.84
  • conflux-tokenConflux (CFX) $ 0.060268
  • flokiFLOKI (FLOKI) $ 0.000032
  • noonNoon (NOON) $ 0.751949
  • sbtc-2sBTC (SBTC) $ 77,039.00
  • crvusdcrvUSD (CRVUSD) $ 0.999544
  • doublezeroDoubleZero (2Z) $ 0.085958
  • kaiaKaia (KAIA) $ 0.048480
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 115.56
  • usdaiUSDai (USDAI) $ 0.999663
  • savings-usddSavings USDD (SUSDD) $ 1.03
  • kinesis-silverKinesis Silver (KAG) $ 74.11
  • jasmycoinJasmyCoin (JASMY) $ 0.005660
  • pyth-networkPyth Network (PYTH) $ 0.048349
  • msolMarinade Staked SOL (MSOL) $ 133.18
  • syrupMaple Finance (SYRUP) $ 0.239884
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 2,265.06
Bitcoin

North Korean Hackers Exploit Dev Device, Steal Millions in Crypto

By admin
0 31

North Korean Hackers Exploit Dev Device, Steal Millions in Crypto

A North Korean threat actor, UNC4899, launched a sophisticated attack on a cryptocurrency firm in 2025, stealing millions in digital assets. The hackers tricked a developer into downloading a seemingly legitimate archive as part of an open-source collaboration.

The developer transferred it to a corporate device using AirDrop. As a result, the embedded malicious Python code executed a binary masquerading as a Kubernetes command-line tool. This backdoor enabled attackers to pivot to the cloud, harvest credentials, and manipulate critical infrastructure.

Google Cloud described the attack as a mix of “social engineering, exploitation of personal-to-corporate device peer-to-peer data transfer mechanisms, workflows, and eventual pivot to the cloud to employ living-off-the-cloud (LOTC) techniques.”

Cloud Attackers Drain Crypto via Kubernetes

Once UNC4899 got inside the system, they explored the company’s Kubernetes setup and used stolen service account tokens to gain higher-level access. They even changed multi-factor authentication settings to make entry easier. The hackers then reached sensitive parts of the system that handled network controls and customer information, including cryptocurrency wallets.

Next, they grabbed database login details stored insecurely in the system, accessed the production database, and made changes to user accounts. This included resetting passwords and updating MFA codes for high-value accounts. In the end, the attackers were able to withdraw several million dollars in digital currency.

UNC4899 also targeted the company’s automated development processes to stay hidden in the cloud. They planted commands in Kubernetes deployments so that every time a new pod started, it automatically downloaded a backdoor.

Google suggests that companies keep cloud environments strictly separated, limit peer-to-peer file sharing, and watch for unusual activity in containers. Additionally, organizations should use phishing-resistant multi-factor authentication and strong secrets management to reduce the risk of a breach.

Broader North Korean Cyber Activity

Other North Korea-related groups, such as Konni, are using AI-generated malware with the help of PowerShell to target blockchain developers. These attackers send malicious Discord messages with malware that can steal money and data.

Reports show that over $16.5 million went to North Korean IT workers pretending to be legitimate freelancers in 2025 alone. This shows how risky hiring practices can be and highlights the need for stronger background checks and better cybersecurity awareness.

Source

admin 20420 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.