Threat Intelligence , DevOps , Phishing Over $12M stolen in North Korean crypto heist against web developers April 23, 2026 Share By SC Staff (Adobe Stock) North Korean threat operation HexagonalRodent, which is associated with the state-backed Famous Chollima , has exfiltrated up to $12 million worth of cryptocurrency from Web3 developers between January and March, according to The Record , a news site by cybersecurity firm Recorded Future. Attacks with the BeaverTail, InvisibleFerret, and OtterCookie payloads have enabled the compromise of 26,584 cryptocurrency across 2,726 systems, a report from Expel revealed. HexagonalRodent impersonated fake companies on LinkedIn to provide lucrative job offers to web developers, who were then urged to download a coding assessment tool that injected credential-stealing malware. Such findings highlight the multiple cryptocurrency pilfering techniques employed by North Korean hackers. "With so many software engineers out of work, and so few job opportunities available, it makes it all the more easier for North Korean state-sponsored hackers to ensnare targets. With developers applying to hundreds or thousands of jobs without receiving a call back, they're likely to have their guard down when that one job offer finally comes in," said Expel researcher Marcus Hutchins. SC Staff Related Vulnerability Management Discontinued D-Link routers subjected to Mirai botnet targeting SC Staff April 23, 2026 Security Affairs reports that vulnerable end-of-life D-Link DIR-823X routers impacted by the command injection flaw, tracked as CVE-2025-29635, have been targeted by Mirai botnet intrusions since early March, or about a year after the security issue was initially disclosed. Threat Intelligence Industrial-scale SIM farm-as-a-service operation uncovered SC Staff April 23, 2026 Belarus-based software platform ProxySmart has been leveraged to power 87 physical SIM farms around the world as part of an industrial-scale cybercrime operation, according to Infosecurity Magazine. Threat Intelligence Chinese, US cyber capabilities reportedly on par SC Staff April 23, 2026 Offensive cybersecurity capabilities wielded by China were noted by the Netherlands' Defence Intelligence and Security Service, or MIVD, to be on parity with the U.S., reports The Record, a news site by cybersecurity firm Recorded Future. Related Events Cybercast Better Threat Intelligence Between Public and Private Sectors On-Demand Event Virtual Conference Nationwide Cybersecurity Summit 2025: Safeguarding America’s Digital Future On-Demand Event Virtual Conference Securing the Future of Finance: Strategies to Counter Modern Cyber Threats On-Demand Event Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Account Harvesting Business Email Compromise (BEC) Dictionary Attack Distributed Scans DumpSec Dumpster Diving Fault Line Attacks Hybrid Attack Password Cracking Reconnaissance You can skip this ad in 5 seconds