Rewards Hub A North Korean state-sponsored hacking group, "HexagonalRodent," has stolen $12 million from Web3 developers in the first quarter of 2026, according to a cybersecurity report by Expel. The group targeted 26,584 cryptocurrency wallets from 2,726 compromised developer devices. Their attacks involved fake job postings on platforms like LinkedIn, embedding malicious code in "skill assessments" that execute malware via VSCode’s tasks.json functionality.
The malware, including BeaverTail, OtterCookie, and InvisibleFerret, enables password theft and remote control. HexagonalRodent uses AI tools such as ChatGPT to develop malware and create fake corporate identities, even registering shell companies in Mexico to enhance attack credibility. The group also executed its first supply chain attack by compromising a VSCode extension.
North Korean Hackers Steal $12 Million from Web3 Developers Using AI
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.