Techub News reports that, according to Decrypt, Google’s security team Mandiant has released a report stating that North Korea-linked hacker group UNC1069 (also known as CryptoCore) is using AI-generated deepfake videos and fake Zoom meetings to carry out highly targeted attacks against cryptocurrency and fintech companies. The report shows that the group initiates fake Zoom meetings through hijacked Telegram accounts and uses deepfake videos of well-known cryptocurrency executives during the meetings to gain trust. They then induce victims to execute malicious commands under the pretext of “audio malfunction,” ultimately deploying seven different families of malware to steal credentials, browser data, and session tokens. The primary targets are businesses and individuals in the cryptocurrency industry, including software companies, venture capital firms, and their employees.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Gate Daily Report (March 18): SEC and CFTC Clarify That Most Tokens Are Not Securities; Tether Launches New AI Framework
Bitcoin price oscillates around $74,140, with the U.S. SEC and CFTC issuing new guidelines clarifying that most cryptocurrencies are not securities, providing clear guidance for the market. Tether launches an AI fine-tuning framework. The market continues to monitor the impact of high interest rates and geopolitical tensions on the economy.
MarketWhisper2h ago
dLEND Under dTRINITY Suffers First Deposit Inflation Attack on Ethereum, Resulting in Approximately $257,000 in Bad Debt
dTRINITY suffered a first deposit inflation attack by dLEND on March 17, resulting in $257,000 in bad debt. The protocol has been suspended, and the team has committed to fully covering losses with internal funds. Bad debt repayment will begin within 24 hours after the announcement. Other deployments remain unaffected, and user funds are safe.
GateNews2h ago
Bitrefill Discloses Cyberattack on March 1, Suspected to Be Carried Out by North Korean Hackers Lazarus Group
Bitrefill suffered a cyberattack on March 1st, allegedly carried out by North Korean hackers from the Lazarus Group, which targeted employee laptops. The hackers stole a portion of funds and obtained approximately 18,500 customer records, including email addresses and payment information. The company has collaborated with security teams to restore operations, and sales have rebounded.
GateNews4h ago
Bitrefill Discloses Suspected North Korean Hacker Attack on March 1, With Approximately 18,500 Customer Purchase Records Leaked
Bitrefill suffered a cyberattack on March 1st that resulted in the leakage of approximately 18,500 customer records. The attack originated from a compromised employee laptop, using tactics similar to those of North Korean hacker groups. The company has isolated its systems and is working with experts to restore operations while strengthening cybersecurity measures.
GateNews11h ago
Slow Mist Yu Xian: MoreLogin Users Suspected of Bulk Coin Theft, Hacker Address Profited Approximately $85,000
Slowmist founder余弦 warned on X platform that multiple users have suffered theft incidents, with suspicions that private keys or seed phrases were collected by hackers. The hacker address has profited approximately $85,000, with some community members suspecting a connection to MoreLogin fingerprint browser, though no conclusive evidence has been found yet. Calling on victims to provide relevant information for investigation.
GateNews13h ago
