COINOTAG News reported on December 15 that Security Alliance, a cybersecurity nonprofit, has flagged a persistent wave of crypto-focused scams tied to North Korean actors. The group is exploiting counterfeit Zoom meeting invitations to lure victims into malware-enabled sessions.
The attack sequence begins with a Telegram message from an account that seems to be an acquaintance. The dialogue then transitions to a Zoom catch-up invite. Once the call starts, the attacker fabricates audio issues and delivers a patch file that injects malware and exposes private keys.
Security researcher Taylor Monahan warns that this technique has reportedly siphoned off over $300 million in crypto assets from victims, highlighting a material risk to wallet security and digital asset markets.
Readers should verify sender identity, decline unsolicited file exchanges, and avoid downloading attachments from untrusted sources. Use hardware-backed storage for private keys, enable multi-factor authentication, and maintain regular monitoring of crypto wallets to mitigate such threats.
Source: https://en.coinotag.com/breakingnews/north-korean-hackers-target-crypto-users-with-fake-zoom-calls-stealing-private-keys-in-a-300m-scam
