HomeCrypto News StoriesRumoursKraken Exposes North Korean Hacker Posing as Job Applicant

Kraken Exposes North Korean Hacker Posing as Job Applicant

Date:

  • Kraken uncovered a North Korean hacker posing as a job seeker using fake IDs, VPNs, and digital obfuscation tactics.
  • OSINT tools linked the applicant to sanctioned entities and broader crypto infiltration campaigns by state-backed actors.
  • Crypto firms face rising threats from North Korean operatives exploiting job interviews to breach systems undetected.

U.S.-based crypto exchange Kraken recently disclosed an incident in which a North Korean hacker penetrated the company’s systems. According to Kraken’s statement, the attempt was found during a standard hiring process for an engineering position.

Recruiters initially flagged the applicant for providing inconsistent information and the discrepancy prompted an internal investigation after the applicant was interviewed by video. This included using a different name from the one that showed up on the resume submitted, inconsistent shifts in voice during the call, and overall poor knowledge of location and personal details.

Deceptive Tactics and Digital Obfuscation Are Utilized

Following an investigation by Kraken’s security and IT teams, it was determined that the applicant ran their management behind multiple digital layers to conceal their identity and location. Typically used for accessing the interview via a colocated Mac desktop and hiding geolocation data, the candidate accessed the event through a virtual private network (VPN).

A closer inspection of the applicant’s GitHub profile showed that the email used in their account was featured in a recent data breach. This email was also part of a slate of emails the same industry partners shared with Kraken that warned of North Korean threat actors targeting crypto firms. The submitted identification documents were also found to have been altered and used for an identity theft case filed two years back.

Investigation Escalates to the Security Team

After discovering these red flags, Kraken referred the issue to its Red Team for additional inspection. The team used open-source intelligence (OSINT) tools to trace the email address and digital footprint. According to their findings, the person who had applied for the job with the government used multiple aliases when applying for positions with different organizations.

Some of these aliases were linked to individuals under international sanctions for known foreign intelligence activities. Additionally, it was found that some of the identities had managed to land a job at other crypto companies, pointing to a wider infiltration campaign.

Final Verification and Operation Outcome

Kraken decided not to end the interview process there and instead continued interacting to gather information. The final round of interviews, including the additional verification measures, was done with the applicant. Among them were requested to confirm where they were, show a government-issued ID live on camera, or answer basic questions about local establishments in the city where they claim to live.

These prompts received inconsistent and inaccurate responses from the candidate. Because Kraken could not verify personal info relating to this applicant, it concluded that this applicant was not a real job seeker but an agent of a state-sponsored cyber operation.

Industry Implications and Broader Threats

As per Kraken, this incident is part of a growing trend in which groups associated with North Korea leverage employment channels to control access to sensitive systems. The company claims that this infiltration method makes the cybersecurity landscape a tougher place to be especially for blockchain and cryptocurrency firms.

You May Also Like

Dogecoin Price Prediction 2025: Will DOGE Finally Hit $1?

DOGE rebounded 3.24% monthly, with analysts watching for a breakout.Trader Tardigrade charts show repeating patterns that preceded past DOGE rallies.Long-term forecasts place DOGE above $1 by 2030, while short-term...

Ethereum (ETH) Eyes Massive Move Up: Will History Repeat?

Analysts are speculating on whether Ethereum’s price can soar to as high $8,000 by the fourth quarter of the year.According to data from Coinglass, pointed out by Crypto Admiral,...

Virtual Land Scams in Blockchain Games: How to Stay Safe in 2025

Digital land in blockchain games like The Sandbox and Decentraland is more popular than ever; it allows players to buy, build, and even earn from virtual spaces. These land...

Ethena and TON Launch tsUSDe with 10% APY Boost for Telegram Users

TON & Ethena launch USDe and tsUSDe on Telegram, enabling access to yield-bearing stablecoins for 1B+ users.tsUSDe holders in non-custodial wallets get a 10% APY boost in TON tokens,...
Yasmin Werner
Yasmin Werner
Yasmin is a crypto content analyst and writer with over 2 years of experience. She has a strong understanding of the crypto market and blockchain technologies. As an avid trader who stays updated on the latest trends and news, Yasmin delivers insightful and informative content.

Subscribe To Our Weekly Picks!

- Join over 76,000+ subscribers

- Weekly picks delivered to your email

- It's free to subscribe!

Latest Altcoin News

SPONSORED ADVERTISEMENTspot_img

Latest News Stories

Tether’s US Expansion: Will Trump’s Crypto Shift Help?

Tether has almost reached $120 billion in U.S. Treasuries in an effort to regain...

Google Wallet Adopts Zero-Knowledge Proofs, a Technology Rooted in the Crypto World

Google Wallet uses zero-knowledge proofs to verify identity details like age without revealing personal...

Is the U.S. Government Installing Bitcoin ATMs? Texas Rep Sparks Buzz

A U.S. lawmaker wants crypto ATMs in federal buildings to support digital finance access.The...

Tether Hits Record $120B Treasuries — Global USD₮ Demand Surging?

Tether's Q1 2025 profit exceeded $1 billion, driven by a record level of U.S....

Ethena and TON Launch tsUSDe with 10% APY Boost for Telegram Users

TON & Ethena launch USDe and tsUSDe on Telegram, enabling access to yield-bearing stablecoins...