In one of the world’s leading crypto platforms, a person thought to be of North Korean origin was found to apply to the IT position with a false identity. The incident came up as a result of a careful examination of the company’s security unit.
Fake identity and application process
At the time of the application, the person introduced his identity as “Steven Smith, and contained inconsistencies in the documents submitted while applying for a job. Allegedly, allegedly came from Houston, although the driver’s license screenshot was about 300 miles in the display. In addition, the person is a graduate of New York University and US -based companies have ten years of experience.
However, it is interesting that a kind of event to be seen in the films is experienced in real life. This shows how far the hackers who have become a civil servant of the North Korean state, such as Lazarus, have gone in social engineering.
Kraken’s security strategy
Nick Percoco, Chief Security Officer of Kraken, said he preferred to face such applications directly to confront the attackers.
Nick Percoco: uz We like to look at the attackers directly. Some people can describe it as intimidation. We see this approach as a security research. Tasks are based on starting business life, stealing intellectual property and company assets. ”
The inconsistencies in the documents displayed created serious doubts about the real identity of the person. The suspect tried to introduce herself as a competent and experienced person by giving unfounded statements.
In the light of the information obtained, the person is included in the “Do Not Hire” list. Allegedly, there are assessments that the person may be connected to North Korean leader Kim Jong Un. The United Nations states that North Korea generates significant income with such methods every year.
Kraken’s security officials continue to examine this event meticulously. The company said that it has reviewed the current security protocols in order to prevent similar situations. It was observed that the incident also echoed in the field of international cyber security.
This incident once again reminded the seriousness of false statements and fraud attempts, while digital platforms needed to increase security measures. The relevant company is developing strategies to intervene with similar situations in the future.
Responsibility Rejection: The information contained in this article does not contain investment advice. Investors should be aware that crypto currencies carry high volatility and thus risk and carry out their operations in line with their own research.
