North Korea has infiltrated up to 20% of crypto firms, security expert says
Up to one-fifth of all crypto companies may have North Korean workers embedded in their operations, a security expert warned at Devconnect in Buenos Aires.
- Up to 20% of crypto companies may unknowingly have North Korean workers embedded.
- An estimated 30–40% of crypto job applicants are DPRK attempts to infiltrate firms.
- North Korea has stolen over $3B in crypto in three years, funding nuclear programs.
Pablo Sabbatella, who founded web3 audit firm Opsek and serves as a Security Alliance member, shared estimates that suggest the problem extends far beyond isolated incidents.
Job applications flooding into crypto firms show an even more troubling picture. Sabbatella estimates that roughly 30% to 40% of applicants are North Korean attempts at gaining employment.
Sanctions evasion through identity theft schemes
International sanctions prevent North Koreans from applying for jobs under their real identities. The workaround involves recruiting people in other countries to serve as fake employees.
Freelance platforms like Upwork and Freelancer have become hunting grounds for these recruiters, who target workers in Ukraine, the Philippines, and similar nations.
The arrangement splits earnings 80-20, with the North Korean agent taking the larger share. Collaborators provide verified credentials or allow remote use of their identity.
U.S. companies face particular targeting. North Korean agents claim to be non-English speaking Chinese applicants who need interview assistance.
The “front person” gets their computer infected with malware during this process and grants the agent access to American IP addresses and overall internet access than North Korea allows.
Companies often retain these workers long-term. “They work well, they work a lot, and they never complain,” Sabbatella told local news. Performance keeps suspicions low while access to sensitive systems grows.
Weak security practices enable massive theft operations
Pyongyang’s cyber operations have netted over $3 billion in stolen cryptocurrency across three years, according to U.S. Treasury Department figures from November.
The stolen funds flow directly into North Korea’s nuclear weapons development programs.
Sabbatella placed blame squarely on industry practices. Crypto companies show weaker operational security than any other computing sector, he argued.
Founders publicly reveal their identities, mishandle private keys, and succumb to manipulation tactics.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
The Psychological Factors Influencing Retail Investors’ Actions in Cryptocurrency Markets
- Crypto markets are shaped by behavioral finance, where retail investors drive volatility through FOMO, herd behavior, and overconfidence. - The PENGU token exemplifies this dynamic, surging 480% in July 2025 but plummeting 28.5% by October due to emotional trading cycles. - Social media amplifies emotional contagion, with traders checking prices 14.5 times daily, while financial literacy mitigates bias susceptibility. - Personality traits like neuroticism increase cognitive biases, and speculative narrat
Bitcoin News Today: Bitcoin's Unstable Holiday Periods Hide Average Gains of 6%
- Bitcoin's Thanksgiving-to-Christmas performance shows equal odds of rising or falling, with a 6% average seasonal return despite volatility. - Historical extremes include a 50% 2020 rally and 2022's 3.62% drop post-FTX collapse, amid a $2.49-to-$91,600 long-term surge since 2011. - 2025's $91,600 price reflects ongoing recovery from 2024's $95,531 peak, with institutional crypto adoption and macroeconomic factors shaping future trajectories. - Analysts advise dollar-cost averaging for retail investors, w
Australia Strikes a Balance Between Fostering Crypto Innovation and Safeguarding Investors with Updated Regulations
- Australia introduces 2025 Digital Assets Framework Bill to regulate crypto platforms under ASIC, creating "digital asset platform" and "tokenized custody platform" licenses. - The framework mandates custody standards, transparency requirements, and lighter regulations for small operators (<$5k per customer) to balance innovation with investor protection. - Global alignment with UAE and EU crypto regulations is emphasized, while addressing risks from past failures like FTX through stricter enforcement and
PENGU Token's Latest Price Fluctuations and Blockchain Indicators: An Analytical Perspective on Technical Factors and Institutional Activity
- PENGU token's recent volatility and on-chain activity spark debate over institutional involvement in the crypto market. - Technical indicators show conflicting signals: overbought RSI vs. positive MACD/OBV momentum since November 2025. - Whale accumulation and Solana integration suggest strategic buying, while team wallet outflows highlight market uncertainty. - Social media sentiment drives short-term price swings, but structural risks like tokenomics and regulatory ambiguity persist. - Institutional ad
Trending news
MoreCrypto prices
More
