North Korea’s cybercrime operations have expanded using Russian IP infrastructure to conduct sophisticated attacks, particularly targeting cryptocurrency wallets and IT professionals globally. The threat actor Void Dokkaebi created fake firms like BlockNovas to lure victims into downloading malware designed as interview software. The operation utilized advanced social engineering and was linked to Russian IP addresses, highlighting cross-border cyber collaboration.
North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to
