朝鲜的加密抢劫：贪污，NFTS和500万美元的赏金

朝鲜黑客越来越多地针对加密货币和NFT项目，汇集了被盗资金以支持该政权。从详尽的挪用公款计划到NFT漏洞，威胁是真实的和不断增长的。

The intersection of North Korea, cryptocurrency, and embezzlement is becoming an increasingly concerning trend. From elaborate scams targeting blockchain companies to brazen NFT heists, North Korean operatives are finding new ways to exploit the digital asset space. The latest developments paint a disturbing picture of state-sponsored cybercrime, with potentially millions of dollars being siphoned off to fund the regime's activities. And now, the FBI is offering a cool $5 million for information leading to the arrest of four men involved.

朝鲜，加密货币和挪用公款的交集变得越来越令人关注。从针对区块链公司的精心制作的骗局到Brazen NFT抢劫，朝鲜特工正在寻找开发数字资产空间的新方法。最新的发展描绘了国家资助的网络犯罪令人不安的图片，可能会花费数百万美元来资助该政权的活动。而现在，联邦调查局（FBI）提供了一笔凉爽的500万美元，以获取导致逮捕四名男子的信息。

Remote Work Ruse: Embezzlement Goes High-Tech

远程工作诡计：挪用公款高科技

In a recent case, federal prosecutors charged four North Korean nationals with running a cryptocurrency embezzlement scheme. These individuals allegedly posed as remote IT workers, using fake identities to infiltrate companies in Georgia and Serbia. Once inside, they siphoned off over $900,000 in stolen digital assets, laundering it through services like Tornado Cash (a platform previously sanctioned by the U.S. Treasury) and funneling it back to North Korea. The goal? To support weapons development and evade international sanctions. Talk about a sophisticated operation!

在最近的一个案件中，联邦检察官指控四名朝鲜国民采用加密货币挪用公款计划。据称，这些人以远程IT工人的身份冒充了伪造的身份来渗透在佐治亚州和塞尔维亚的公司。进入室内后，他们将超过900,000美元的被盗数字资产抽出，通过龙卷风（Tornado Cash）（以前由美国财政部批准的平台）进行洗涤，并将其汇回朝鲜。目标？支持武器开发并逃避国际制裁。谈论一个复杂的操作！

U.S. Attorney Theodore S. Hertzberg hit the nail on the head: "This is not just a long con for personal enrichment. The money stolen doesn’t go to these individuals — it funds weapons programs and other destabilizing efforts of the North Korean regime."

美国检察官西奥多·S·赫兹伯格（Theodore S. Hertzberg）击中了指甲：“这不仅是个人充实的长期骗局。这笔钱被盗并不是这些人 - 它为武器计划提供了资金和朝鲜政权的其他稳定努力。”

NFTs in the Crosshairs: Pepe Gets Hacked

十字准线中的NFT：Pepe被黑客入侵

But the schemes don't stop there. Remember Pepe the Frog? Even the NFT projects linked to its creator, Matt Furie, haven't been safe. A devastating cyberattack, reportedly orchestrated by North Korean hackers, resulted in over $1 million in losses. The hackers infiltrated projects by posing as legitimate developers and gaining access to critical systems. This allowed them to mint countless NFTs, tank the floor price, and make off with a hefty sum. In one instance, an infiltrator was hired as a Chief Technology Officer – highlighting the need for better operational security.

但是这些方案并不止于此。还记得青蛙佩佩吗？即使是与其创建者Matt Furie相关的NFT项目，也不是安全的。据报道，由朝鲜黑客精心策划的毁灭性网络攻击造成了超过100万美元的损失。黑客通过摆姿势作为合法开发人员并获得关键系统的访问来渗透项目。这使他们能够铸造无数的NFT，将地板价格打倒，并以巨额资金赚钱。在一个例子中，聘请了渗透器为首席技术官 - 强调需要更好的运营安全。

Blockchain investigator ZachXBT traced these attacks back to a group linked to North Korea, likely associated with the infamous Lazarus Group. It's a stark reminder that even the meme-iest corners of the internet aren't immune to state-sponsored cybercrime.

区块链的调查员Zachxbt将这些攻击追溯到与朝鲜相关的团体，可能与臭名昭著的Lazarus集团有关。这是一个明显的提醒，即使是互联网的最模因角落也不能不受国家资助的网络犯罪的影响。

What Can You Do? Vet, Verify, and Vigilance!

你能做什么？兽医，验证和警惕！

The FBI and DOJ are urging companies, especially those in the cryptocurrency and tech sectors, to thoroughly vet remote employees. Red flags include resistance to video calls, frequent address changes, and even keyboard settings defaulted to Korean. Seriously, folks, it’s time to up your hiring game.

联邦调查局和司法部正在敦促公司，尤其是加密货币和技术领域的公司，以彻底审查远程员工。危险信号包括对视频呼叫的阻力​​，频繁的地址更改，甚至违约键盘设置为韩文。认真地说，伙计们，是时候提高您的招聘游戏了。

As U.S. Attorney Theodore S. Hertzberg put it, "If companies that work in this space want to protect themselves, they would be wise to hire Americans and thoroughly vet all potential employees and business partners."

正如美国检察官西奥多·S·赫兹伯格（Theodore S.

A Word of Caution

谨慎

The North Korean cyber threat is a serious one, and it's evolving rapidly. Companies need to be proactive in protecting themselves. But in the meantime, you can also help by keeping an eye out for anything suspicious and reporting it to the FBI.

朝鲜网络威胁是一个严重的威胁，它正在迅速发展。公司需要主动保护自己。但是与此同时，您还可以注意任何可疑的东西，并将其报告给联邦调查局。

In conclusion, the situation is getting pretty intense. But hey, at least we're learning about cybersecurity the hard way, right? Stay safe out there, folks!

总之，情况变得非常激烈。但是，嘿，至少我们正在学习艰难的网络安全，对吗？伙计们，保持安全！