According to the Financial Times, with the development of artificial intelligence (AI) technology, the notorious North Korean hacking group has also begun to frequently use AI tools, such as ChatGPT, to carry out complex fraud operations. The report points out that these hackers target employees of defense, cybersecurity, and cryptocurrency companies worldwide, conducting social engineering attacks on professional social platforms like LinkedIn, inducing them to disclose sensitive information or grant access to computer networks or cryptocurrency wallets.
As the largest investor in OpenAI, Microsoft has also confirmed this information, stating that hackers working for North Korea, China, Russia, and Iran are using the company’s AI services to support their malicious online activities. LinkedIn has become the preferred platform for phishing scams, with many North Korean hackers posing as HR or headhunting companies, engaging in highly persuasive interactions to deceive victims. Erin Plante, Vice President of Investigations at blockchain data platform Chainalysis, added:
Furthermore, Erin Plante added that the current attack methods are no longer the kind of phishing emails with poor content and a “click this link” attached. Attackers now spend weeks or even months building relationships with their targets. In addition to LinkedIn, social platforms like Facebook, WhatsApp, Telegram, and Discord are also hunting grounds for attackers.
On the other hand, according to a United Nations expert panel, the illicit funds raised through cybercrime are used to finance North Korea’s missile and nuclear weapons programs.
