A new front in the cyber battle has opened, and Coinbase is in the middle of it. North Korean hackers are no longer just stealing crypto; they are trying to infiltrate companies from the inside.
The U.S.-based crypto exchange, which holds the title of the third-largest in the world by trading volume, has rolled out extensive security protocols to tackle these emerging threats.
The recent action comes after North Korean IT operatives made several attempts to take advantage of remote hiring practices. These individuals are said to pose as developers in order to gain access to crypto firms, with Coinbase now being viewed as a key target.
The company’s leadership confirmed urgent measures. Every employee must now attend in-person training within the United States. Moreover, staff handling sensitive systems must hold U.S. citizenship and provide fingerprints.
CEO Brian Armstrong defended the move, stressing that security remains non-negotiable. “DPRK is very interested in stealing crypto,” Armstrong said on the Cheeky Pint podcast. He added that hundreds of trained operatives graduate every quarter with one goal—stealing digital assets.
Rising Threats Beyond Coinbase
Besides Coinbase, other crypto companies are feeling the heat. In June, four North Korean developers slipped into multiple startups as freelancers. Consequently, they managed to steal nearly $900,000 in combined funds.
Armstrong warned that some operatives face coercion from the regime. “Their family is being coerced or detained if they don’t cooperate,” he noted. This highlights the human complexity behind cybercrime.
Additionally, Coinbase has already faced pressure this year. Three months ago, the exchange confirmed a data breach impacting under 1% of monthly users. The potential cost could reach $400 million in reimbursements.
However, the greater risk may lie in leaked personal data. TechCrunch founder Michael Arrington warned that home addresses and balances now leave users exposed to physical threats.
Coinbase Brand Targeted in Phishing
Notably, Coinbase is increasingly the target of impersonation scams. According to MailSuite’s most recent report, 416 phishing attacks have used the Coinbase brand since 2020.
Coinbase was found to be the most impersonated cryptocurrency organization in phishing assaults in the United States last year. The exchange is therefore vulnerable to both direct cyber threats and mass brand exploitation.
Meanwhile, Blockchain investigator ZachXBT also took a stand against the prevalent fear narratives surrounding North Korean IT workers. In his post, he pointed out that many of these workers aren’t as sophisticated as people think and often don’t make it into the ranks of the more advanced hacking groups.
He thinks that these operators can be easily identified throughout the employment process with a little simple due diligence. As per him, any business that unintentionally employs DPRK IT personnel is probably displaying some more serious operational issues.
Coinbase is entering a new security era. The exchange has to balance innovation with high protection as North Korean hackers intensify global threats.
Also Read: FTX Creditors File Class-Action Against Kroll Over Data Breach
