Binance founder Changpeng Zhao (CZ) has issued a serious warning to crypto companies, urging them to take North Korean hacker threats more seriously. According to him, attackers are deploying increasingly sophisticated methods to infiltrate companies involved in cryptocurrencies and financial technologies. Four Tactics Used by Hackers CZ identified four key strategies used by North Korean hacker groups: Fake job applicants – Hackers apply for positions, mainly in development, security, and finance, to gain access to internal systems. Interview traps – They pose as employers and send employees links to ”updates” or ”code samples” during online interviews, which actually contain viruses. Malicious links in support services – Attackers disguise themselves as users and leave infected links in support requests. Bribery of employees or contractors – Attempting to exploit insiders to gain access to sensitive data. ”Just a few months ago, a major outsourcing company in India was hacked, and user data from a leading US exchange was stolen, resulting in losses of over $400 million,” Zhao noted. He emphasized, ”These hackers are sophisticated, creative, and patient,” adding that crypto platforms must prioritize staff training, thorough candidate screening, and a strict ban on uploading unverified files. Recent Incidents Highlight the Threat North Korean cybercriminal activity has been on the rise. Notable incidents include: In July, US citizen Christina Marie Chapman was sentenced to 8.5 years in prison for helping North Korean hackers obtain jobs under the guise of American IT specialists, earning the criminals more than $17 million. In August 2025, Coinbase CEO Brian Armstrong announced the company would change its remote work policy and introduce in-person orientations for new employees after attempts to bribe staff by North Korean IT specialists. Microsoft security researcher James Elliott described North Korea as a major cybersecurity threat during the Cyberwarcon conference in November 2024. According to Google Cloud, North Korean groups such as TraderTraitor and Jade Sleet stole $1.6 billion in cryptocurrency in 2025 alone. Over the past decade, losses from North Korean cyberattacks are estimated in the billions, with funds believed to support the regime’s nuclear program.
