I knew about North Korean hackers-they still tricked me and got into my computer
Fortune • • business
Key Points:
- A journalist covering North Korea nearly fell victim to a sophisticated phishing scam orchestrated by DPRK hackers, who used fake video conferencing links and impersonated known contacts on Telegram to attempt to steal crypto and passwords.
- North Korean state-sponsored hackers have increasingly targeted the crypto industry, stealing $2 billion in 2025 alone, using tactics such as hijacking Telegram accounts to reach victims’ contacts and trick them into downloading malicious software.
- The scam involved impersonation of a former Bitcoin executive and a hedge fund investor, both of whose Telegram accounts were compromised to lure the journalist into a fake Zoom call with a malicious update prompt.
- Security researchers confirmed the attack’s DPRK origin based on the malicious script and accounts used, highlighting a broader campaign targeting crypto journalists and investors due to their valuable contact networks.
- Despite the near-miss, the incident underscores the challenges of protecting against state-sponsored cyberattacks and the limitations of platforms like Telegram in preventing account hijacking and impersonation.
