Microsoft, the owner of LinkedIn, has revealed that the North Korea-linked hacking group Sapphire Sleet has stolen over $10 million in cryptocurrency through sophisticated social engineering campaigns. Active since 2020, the group has used LinkedIn to pose as recruiters or job seekers, targeting victims with malware-laced scripts disguised as skills assessments or troubleshooting online meetings. Their methods include impersonating financial firms like Goldman Sachs and leveraging AI tools like Faceswap and voice changers to create convincing fake profiles. Faceswap is an open-source deepfake software tool that allows users to swap faces in images or videos using artificial intelligence (AI) and machine learning techniques. In a separate scheme, North Korean IT workers have been using facilitators to secure freelance jobs abroad, abusing legitimate access for intellectual property theft and ransomware attacks, generating an estimated $370,000 in revenue for the regime. The facilitators are intermediaries who help North Korean IT workers bypass restrictions by creating fake profiles, securing access to freelance platforms, and managing logistics like setting up bank accounts or phone numbers.
My Take
North Korea’s use of LinkedIn as a platform for cyberattacks highlights a growing trend in leveraging trusted professional networks for illicit purposes. Integrating AI tools like Faceswap and voice changers demonstrates an alarming evolution in how cybercriminals use advanced technologies to deceive and exploit targets. These activities emphasize the need for companies to double down on cybersecurity awareness and training, as even seemingly mundane interactions can lead to significant losses. The interplay between AI, cybersecurity, and international crime will demand more proactive defenses and coordinated global efforts as we move further into a digital-first world. You even have to be careful on LinkedIn. I have been approached many times by people with fake-looking profiles on LinkedIn. I never engage and always block them.
#Cybersecurity #AI #SocialEngineering #LinkedInFraud #Cryptocurrency #NorthKorea #ThreatIntelligence #DigitalSafety #TechEthics
Link to article:
https://thehackernews.com/2024/11/north-korean-hackers-steal-10m-with-ai.html
Credit: The Hacker News