朝鮮黑客試圖滲入kraken-但平台轉過身

我們看到了另一個基於區塊鏈的平台和加密公司的實例，這似乎是秘密但朝鮮黑客廣泛的廣告活動。

Kraken, a leading cryptocurrency platform, has reportedly encountered an infiltration attempt by a North Korean hacker, who applied for an engineering role at the company. However, instead of rejecting the candidate, Kraken decided to study the attacker’s tactics in real-time, providing multiple insights valuable to the entire industry.

據報導，領先的加密貨幣平台克雷肯（Kraken）遇到了朝鮮黑客的滲透嘗試，後者申請了該公司的工程角色。但是，克雷肯決定實時研究攻擊者的策略，而不是拒絕候選人，為整個行業提供了多種見解。

As reported by Chainalysis, this incident began when the candidate, who initially joined a call with a different name than the one listed on their resume, also switched between voices during the interview, suggesting they might be getting coaching from another party.

正如Chainalysis報導的那樣，這一事件始於候選人最初加入與簡歷上列出的名字不同的候選人，在面試中也在聲音之間切換，這表明他們可能會從另一個聚會上獲得教練。

This behavior, recognized by Kraken as a common tactic used by North Korean hacker cells, raised further suspicion. Their internal Red Team was engaged and initiated an OSINT investigation, examining breach data, identity clusters, and the candidate’s online activity.

這種行為被克萊肯認為是朝鮮黑客細胞使用的一種常見策略，引起了人們的懷疑。他們的內部紅色團隊參與其中，並開始了OSINT調查，檢查了漏洞數據，身份集群和候選人的在線活動。

The investigation confirmed the individual was tied to a broader network of aliases and forged identities, one of which was directly linked to a person on international sanctions lists. This finding implicated the candidate with a North Korean APT group focused on cryptocurrency theft.

調查證實，該個人與更廣泛的別名和偽造身份聯繫在一起，其中一個直接與國際制裁名單上的人有關。這一發現暗示了朝鮮公寓集團的候選人重點是加密貨幣盜竊。

Furthermore, technical analysis of the candidate’s devices revealed anomalies and misconfigurations typically found in compromised systems, further supporting the hypothesis of malicious intent.

此外，對候選人設備的技術分析揭示了在折衷的系統中通常發現的異常和錯誤配置，進一步支持了惡意意圖的假設。

The candidate also displayed an unusually close proximity to the interviewer despite being in a different country, which, according to Kraken, was another indicator employed by North Korean hacker cells to maintain a persistent presence in a targeted company’s ecosystem.

儘管在一個不同的國家，但候選人還表現出與面試官的異常接近，據克雷肯（Kraken）稱，這是朝鮮黑客細胞在目標公司的生態系統中持續存在的另一個指標。

Finally, they failed to respond convincingly to a question about a tattoo visible on their arm during the interview, becoming evasive and unable to verify basic personal details.

最後，他們未能令人信服地回答一個關於面試期間紋身可見的問題，變得逃避，無法驗證基本的個人細節。

In a statement shared by email, CSO Nick Percoco concluded:

在電子郵件分享的一份聲明中，CSO Nick Percoco得出結論：

“Don’t trust, verify. This core crypto principle is more relevant than ever in the digital age. State-sponsored attacks aren’t just a crypto, or U.S. corporate, issue — they’re a global threat. Any individual or business handling value is a target, and resilience starts with operationally preparing to withstand these types of attacks. We're grateful for the opportunity to contribute to the collective defense by sharing our experience.”

“不要相信，驗證。在數字時代，這種核心加密原則比以往任何時候都更有意義。國家贊助的攻擊不僅是一個加密貨幣或美國公司問題 - 它們是全球威脅。任何個人或企業處理價值都是目標，而且彈性始於運營始於在運營上準備承受這些類型的攻擊。我們為這些類型的攻擊提供了機會，我們可以通過共享我們的辯護經驗來貢獻我們的經驗。