عاجل
KR인천 옹진군 호우주의보 발효CN盯紧压实责任全力抢险救援 最大限度减少人员伤亡——习近平总书记重要指示为各地各部门防汛救灾吹响集结号发出动员令TRİsraillilerin Filistin türküsü söylemesi tepki çektiFRL'Argentine renverse l'Égypte dans un match fou et se qualifie pour les quarts de finaleCN梅西進球助阿根廷3:2逆轉埃及 挺進世界盃8強INIndia's Manufacturing Growth Surpasses Global Average, Emerging as a LeaderGLOBALCoco Gauff Reaches First Wimbledon Semi-Final After Beating Jessica PegulaVNSố lượng phương tiện đăng ký mới tăng trưởng bùng nổ trong 6 tháng đầu năm 2026INTLTrump Allies Accuse Democrats of Communism Amidst State Investment SurgeESMundial: Argentina y España avanzan a cuartos; Brasil, eliminadaKR인천 옹진군 호우주의보 발효CN盯紧压实责任全力抢险救援 最大限度减少人员伤亡——习近平总书记重要指示为各地各部门防汛救灾吹响集结号发出动员令TRİsraillilerin Filistin türküsü söylemesi tepki çektiFRL'Argentine renverse l'Égypte dans un match fou et se qualifie pour les quarts de finaleCN梅西進球助阿根廷3:2逆轉埃及 挺進世界盃8強INIndia's Manufacturing Growth Surpasses Global Average, Emerging as a LeaderGLOBALCoco Gauff Reaches First Wimbledon Semi-Final After Beating Jessica PegulaVNSố lượng phương tiện đăng ký mới tăng trưởng bùng nổ trong 6 tháng đầu năm 2026INTLTrump Allies Accuse Democrats of Communism Amidst State Investment SurgeESMundial: Argentina y España avanzan a cuartos; Brasil, eliminada
Newsgather
BackNorth Korea-Linked Hackers Suspected in Humanity Protocol's $36 Million Token Theft
North Korea-Linked Hackers Suspected in Humanity Protocol's $36 Million Token Theft
يتطور
Cointelegraph14.06.2026Crime2 dk okuma

North Korea-Linked Hackers Suspected in Humanity Protocol's $36 Million Token Theft

نظرة سريعة

  • Blockchain security firm Quantstamp suspects North Korea-linked hackers in the recent $36 million theft of Humanity Protocol tokens.
  • A phishing email with a malicious attachment, disguised as a Bithumb update and signed with a South Korean digital certificate, led to malware installation and theft of private keys.

ملخص مُنشأ بالذكاء الاصطناعي

لماذا يهم

Humanity Protocol, a decentralized identity company, suffered a $36 million token theft due to a compromised employee laptop accessed via a phishing email. Blockchain security firm Quantstamp suspects North Korea-linked threat actors.

حجم الخط

A malicious attachment delivered through a phishing email points to the involvement of North Korea-linked threat actors in Humanity Protocol's recent hack, according to blockchain security company Quantstamp.

The decentralized identity company said a compromised employee's laptop enabled attackers to steal $36 million in Humanity (H) tokens on Monday.

The malicious attachment was disguised as a token lockup schedule update from South Korean cryptocurrency exchange Bithumb. It installed malware that gave attackers full remote access to the laptop, Quantstamp said in its incident response.

The phishing email that led to the Humanity Protocol compromise. Source: Quantstamp

Quantstamp added that the malware was signed with a South Korean Hancom digital certificate, a pattern it described as “characteristic of DPRK intrusions.” The malware enabled attackers to copy Humanity Protocol director Chong Yee Wai's MetaMask wallet credentials and private keys.

The suspected North Korean link would add to a series of major crypto thefts attributed to the country. North Korea-linked threat actors were tied to at least $578 million of the $634 million stolen in crypto-related incidents in April.

North Korean hackers tied to some of the largest crypto hacks

According to a May report by blockchain security company CertiK, the same actors have been linked to about $2 billion of the $3.4 billion lost to crypto exploits in 2025, while accounting for 12% of total incidents. CertiK said the figures reflect a focus on “precision and scale.”

Over the past decade, North Korea-linked actors stole an estimated $6.75 billion in cryptocurrency across 263 documented incidents, the report said.

Related: CZ sounds alarm as ‘SEAL’ team uncovers 60 fake IT workers linked to North Korea

CertiK added that North Korea has “industrialized” crypto theft into a core state revenue mechanism, making these operations a substantial share of the regime’s external income.

Total DPRK crypto theft over the years. Source: CertiK/Skynet

North Korea rarely responds to cybercrime allegations, but on May 3, a Foreign Ministry spokesperson rejected them in a statement carried by the Korean Central News Agency, the country's state media.

The spokesperson accused the US of spreading “incorrect” narratives about the “non-existent ‘cyber threat’” from North Korea.

أسئلة مفتوحة

  • How will Humanity Protocol recover stolen assets?
  • What specific measures will be taken against DPRK actors?
  • Will Bithumb face repercussions for the compromised certificate?

مواضيع ذات صلة

This article was originally published by Cointelegraph.

أخبار ذات صلة

Belgian Authorities Arrest Suspect in Major European Phishing and Money Laundering Network
يتطور·4 g önce

Belgian Authorities Arrest Suspect in Major European Phishing and Money Laundering Network

Belgian police arrested a 19-year-old suspected of leading a phishing and money-laundering network that stole over €500,000 using fake government emails. The suspect was found in an Airbnb in Antwerp, where a second individual was also apprehended. The investigation highlights crypto's role in laundering illicit funds and the broader threat of phishing to crypto investors.

Cointelegraph
المزيد حول هذا الموضوعHumanity Protocol