A recent security briefing alleges that a North Korean state-backed cyber group has begun integrating artificial intelligence tools, including ChatGPT and Gemini, into its disguised recruitment operations. The aim appears to be to facilitate access to technical talent and credential harvesting that could support cryptocurrency theft. Analysts caution that the use of AI marks a shift in the group’s approach to infiltrating financial networks.
According to the report, once compromised developers’ access rights are obtained, those privileges are leveraged to move laterally within target networks and access centralized cryptocurrency exchanges. The group is said to focus on exfiltrating assets by exploiting weak internal controls and misconfigurations in trading platforms. The allegations underscore how evolving AI-powered tactics may amplify the impact of traditional cyber intrusions.
Security researchers urge exchanges and developers to tighten access management and monitor for AI-assisted social engineering signals. The findings illustrate ongoing risks to the crypto market as threat actors adapt to new tools and methods. The report does not provide a public attribution, but a growing chorus of experts warn that state-sponsored groups are increasingly using AI to target digital assets.
Leave a Reply