ChainCatcher reports that, according to Cointelegraph, the U.S. cybersecurity firm Mandiant, a subsidiary of Google Cloud, has discovered that North Korea-linked threat groups are increasing social engineering attacks targeting cryptocurrency and fintech companies.
The threat group (codenamed UNC1069) has deployed seven malicious software suites, including newly discovered SILENCELIFT, DEEPBREATH, and CHROMEPUSH, aimed at obtaining sensitive data and stealing digital assets. The attackers exploit compromised Telegram accounts and use AI-generated deepfake videos to lure victims into fake Zoom meetings. Mandiant has been tracking this group since 2018, but advances in AI have helped the group expand its malicious activities since November 2025. In one intrusion, the attackers used stolen cryptocurrency founder Telegram accounts to initiate contact and employed a so-called ClickFix attack to trick victims into executing “troubleshooting” commands containing hidden instructions.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
ZachXBT Announces Major Reveal on February 26: Directly Addresses the "Most Profitable Company in the Crypto Space" Long-term Insider Trading Scandal
On-chain investigator ZachXBT announced that on February 26th, he will reveal an insider trading scandal involving one of the most profitable companies in the crypto industry, drawing significant market attention. If the investigation proves true, it will impact overall trust and industry governance and could trigger regulatory pressure. The community is widely speculating about the involved company, and the market is highly sensitive to this event.
ChainNewsAbmedia2h ago
WLFI Team Members: This incident was an organized attack. USD1 is fully compliant and fully collateralized.
BlockBeats News, February 23 — Dylan (@0xDylan\_) from the core team of World Liberty Financial posted on social media that someone organized an "attack" against WLFI and USD1. USD1 is fully compliant and backed 1:1 with assets.
GateNewsBot2h ago
ZachXBT: An investigation report on insider trading by employees of a certain crypto company will be released on February 26.
Odaily Planet Daily reports that on the X platform, on February 26, ZachXBT, an on-chain detective, announced the release of a major investigative report targeting a highly profitable company in the crypto industry. The report reveals that several employees of the company have been abusing internal data for insider trading over an extended period.
GateNewsBot4h ago
XRP Ledger plans to implement batch amendment updates following the bug report
XRP Ledger developers are addressing a serious bug found through their Bug Bounty program, ensuring the network remains secure. The foundation is preparing a patch and emphasizes validators to veto a batch amendment, protecting user operations and enabling enhanced features for on-chain applications.
TapChiBitcoin4h ago
Sydney Man Charged Over Alleged $3.5 Million Crypto Scam Targeting Elderly Australians
A 42-year-old man from Sydney has been charged over his alleged involvement in a $3.5 million (A$5 million) crypto investment scam that reportedly targeted more than 190 elderly and vulnerable Australians. The case comes as authorities across the country intensify efforts to combat the growing
ICOHOIDER5h ago
OpenClaw Outage! An AI agent used by OpenAI employees mistakenly sent out 600,000 MAG crypto coins
An OpenAI employee's AI agent Lobstar Wilde accidentally transferred approximately 52.43 million tokens due to a system misinterpretation. The original plan was only for a small grant. Although the final sale amount was about $40,000, the token price later surged to nearly $600,000. This incident highlights the risks and potential impact of AI agents in asset management.
ChainNewsAbmedia10h ago
