North Korean hackers try to apply for Binance every day, forging a large number of resumes

BlockBeats News: On August 13th, Binance Chief Security Officer Jimmy Su stated that the trading platform receives a large number of forged resumes every day, and he is confident that these resumes are written by potential North Korean attackers. In his view, national level attackers from North Korea are the biggest threat facing companies in the cryptocurrency industry today. Su explained that North Korean attackers have always been a problem in Binance's eight year operating history, but recently their attack methods have been upgraded in the cryptocurrency field. The biggest threat to the encryption industry currently is national level attackers, especially the Lazarus Group in North Korea, "Su added." In the past two to three years, they have focused on the encryption field and achieved considerable success in their operations. "He also mentioned that" almost all major North Korean hacking incidents involve a person disguised as an employee assisting in the implementation of the attack There are two common attack methods used by North Korean national level attackers: implanting malicious code in public NPM libraries and issuing false job invitations to encryption practitioners. NPM (Node Package Manager) library or package is a commonly used reusable code collection by developers. Malicious attackers can copy these packages and insert a small line of malicious code, which could result in serious consequences while maintaining the original functionality. Even if the malicious code is only discovered once, it will gradually penetrate the system as developers build new features on top of it. To prevent such risks, Binance must carefully review every line of code. The main cryptocurrency exchange platforms will share security intelligence in Telegram and Signal groups to mark libraries implanted with malicious code and emerging attack methods in North Korea.