ChainCatcher reports that, according to Cointelegraph, the U.S. cybersecurity firm Mandiant, a subsidiary of Google Cloud, has discovered that North Korea-linked threat groups are increasing social engineering attacks targeting cryptocurrency and fintech companies.
The threat group (codenamed UNC1069) has deployed seven malicious software suites, including newly discovered SILENCELIFT, DEEPBREATH, and CHROMEPUSH, aimed at obtaining sensitive data and stealing digital assets. The attackers exploit compromised Telegram accounts and use AI-generated deepfake videos to lure victims into fake Zoom meetings. Mandiant has been tracking this group since 2018, but advances in AI have helped the group expand its malicious activities since November 2025. In one intrusion, the attackers used stolen cryptocurrency founder Telegram accounts to initiate contact and employed a so-called ClickFix attack to trick victims into executing “troubleshooting” commands containing hidden instructions.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Trader on Polymarket loses hundreds of thousands of USD due to fake Uniswap ads on Google
A trader lost hundreds of thousands of dollars after clicking a fake Uniswap ad on Google. This incident highlights ongoing phishing scams in crypto, where attackers disguise malicious sites to steal assets. Experts urge stricter measures against such fraudulent ads.
TapChiBitcoin2h ago
IoTeX: Previously suffered $2 million in on-chain attack losses, expected to resume operation within 48 hours
IoTex announces an update stating that they have controlled the private key leak incident, with losses of approximately $2 million, involving multiple assets. The team is working with exchanges and law enforcement agencies to freeze the stolen funds and conduct an investigation. On-chain functionalities will be restored after the security upgrade and will keep transparent progress.
GateNewsBot10h ago
Fraud losses in the cryptocurrency sector reached $370 million in January, the highest in nearly 11 months
Uniswap founder Hayden Adams warns that search engine ads impersonating Uniswap have caused users to lose high-value crypto assets, with scammers using this to trick users into connecting wallets and authorizing transactions. In January 2026, the crypto industry suffered losses of $370.3 million from such attacks, mainly caused by phishing links and fake ads, highlighting the threat of brand impersonation to user trust.
GateNewsBot11h ago
ZachXBT warns that accounts on X are fabricating content to lure and scam users.
ZachXBT warns of a social media account allegedly fabricating stories to increase engagement and lure users into scams. The account has gained a large following using shocking content. The public is encouraged to verify information and remain cautious of high-profile accounts to avoid scams.
TapChiBitcoin11h ago
IoTeX Bridge Exploit Drains $8M After Private Key Compromise
The IoTeX blockchain faced a major exploit, with over $8M stolen due to a compromised private key. The hacker quickly converted the stolen assets into Ethereum and began transferring them to Bitcoin. While IoTeX reported lower losses than expected, the incident highlights security vulnerabilities in cross-chain bridges.
BlockChainReporter13h ago
IoTeX suspected private key leak results in approximately $4.3 million worth of assets stolen and transferred across chains
IoTeX experiences private key leak incident, with attackers transferring approximately $4.3 million worth of assets from the token vault, and the stolen assets have been exchanged for ETH. Among them, 45 ETH have been cross-chain transferred to the Bitcoin network, and the incident is under investigation.
GateNewsBot02-21 09:42
