In a stark reminder of the escalating cyber warfare landscape, the recent $36 million hack on Humanity Protocol is being tied to suspected operatives from North Korea, according to findings from blockchain security firm Quantstamp. The exploit has cast a shadow over global cryptocurrency activities, raising urgent questions about cybersecurity practices across the sector.
Malicious Phishing Campaign Uncovered
Quantstamp revealed that a phishing email masquerading as a legitimate communication from South Korean cryptocurrency exchange Bithumb was central to the breach. The email, which purported to provide a token lockup schedule update, contained a malicious attachment that, once opened, installed malware on the laptop of a compromised employee.
This malware granted the attackers remote access to sensitive data, enabling them to steal Humanity tokens from the digital wallet of company director Chong Yee Wai. The employed tactics, particularly the usage of a South Korean Hancom digital certificate to sign the malware, have alarmingly echoed strategies associated with North Korean threat actors.
Context of Escalating Cyber Crimes Linked to North Korea
The implications of this hack extend beyond the immediate financial loss. Quantstamp’s analysis suggests that North Korean hackers are not just random criminals but are part of a systematic approach to fund the regime's activities. In 2025 alone, these actors were linked to approximately $2 billion in crypto thefts, contributing significantly to the $3.4 billion reportedly lost to cyber exploits during that year.
With their operations described as “industrialized,” the North Korean regime appears to be integrating cybercrime as a vital component of its revenue generation mechanisms. Estimated overall thefts attributed to these actors now exceed an astonishing $6.75 billion across more than 260 documented incidents in the past decade.
North Korea's Denial and the Ongoing Threat
North Korea's response to cybercrime allegations is consistently one of denial. A recent statement from the Foreign Ministry dismissed such accusations as baseless, describing the narrative surrounding the so-called 'cyber threat' as a fabrication by the United States. However, the evidence collected by firms like Quantstamp and CertiK paints a different picture, one of a regime increasingly reliant on sophisticated hacking operations.
As the global crypto community reassesses its vulnerabilities in light of this incident, the necessity for robust cybersecurity measures becomes ever more apparent. High-profile hacks like that of Humanity Protocol underscore the urgent need for vigilance and proactive defenses against emerging threats in the digital landscape.
For further details, visit Cointelegraph.
More Recommended
Robinhood Shares Plunge as Q1 Earnings Fall Short,...
Visa Expands Stablecoin Settlement Pilot, Surpasse...
