The North Korean state-sponsored threat group Slow Pisces (aka Jade Sleet, TraderTraitor, PUKCHONG) has been targeting large organizations in the cryptocurrency sector and stealing billions of USD. The hacktivist group engages with cryptocurrency developers on LinkedIn, posing as potential employers and sending malware disguised as coding challenges. Once the malware is activated, it leads to the infection of the developers’ systems. Slow Pisces reportedly stole over $1 billion USD from the cryptocurrency sector in 2023, and more in the following years.
IXON VPN Vulnerabilities Let Attackers Gain Access to Windows & Linux Systems
A security assessment by Shelltrail revealed three critical vulnerabilities in the IXON VPN client, allowing privilege escalation on Windows and Linux. Identified as CVE-2025-ZZZ-01, CVE-2025-ZZZ-02,
%20CISO%E2%80%99s%20Core%20Focus.webp?w=0&resize=0,0&ssl=1 "Identity and Access Management (IAM)")