North Korea Used AI to Hack Zerion in Second Crypto Attack

Crypto wallet company Zerion reported that hackers affiliated with North Korea utilized AI-driven social engineering tactics in a prolonged attack, resulting in the theft of approximately $100,000 from the company's hot wallets. While no user funds or company infrastructure were compromised, Zerion proactively disabled its web app as a security measure. This incident marks the second such AI-enabled social engineering attack linked to a DPRK threat actor this month, following a significant exploit of the Drift Protocol. The article highlights that North Korea is increasingly targeting the human element within crypto firms rather than exploiting smart contract vulnerabilities. Zerion's investigation revealed that the attackers gained access to team members' sessions, credentials, and private keys for company hot wallets. This evolving threat landscape, amplified by AI tools for image and video manipulation, means that individual developers and contributors with access to crypto infrastructure are also potential targets.

(Source：Cointelegraph)