Google Cloud: North Korea-Linked Crypto Malware Scales Up with AI

Published at 2026-02-11 12:30:10

Google Cloud’s security arm Mandiant reports that a North Korea-linked group it has tracked since 2018 has been using AI to dramatically expand a crypto-focused malware campaign starting in November 2025. The abuses include automated phishing, social engineering and malware deployment designed to steal wallet credentials and seed phrases, allowing attackers to operate at higher volume with less human effort.

The development matters because AI-driven scaling increases the speed and reach of crypto fraud, putting individual users and smaller exchanges at elevated risk. Mandiant’s findings suggest defenders should expect more sophisticated, personalized lures and rapid campaign iteration. Users are advised to tighten account protections, enable hardware wallets and multi-factor authentication, and rely on official app/store sources while platforms and regulators reassess threat detection and response strategies.

MalwareCryptocurrencyNorth KoreaAIMandiantGoogle Cloud
Share on:

Related news

Japan Reclassifies Crypto as Financial Instruments, Tightens Rules

Japan’s cabinet has reclassified cryptocurrencies as financial instruments and will introduce bans on insider trading plus annual disclosure requirements for token issuers. The measures aim to strengthen investor protection and bring crypto closer to regulated markets.

CryptocurrencyComplianceRegulationInvestor ProtectionJapan
Published at 2026-04-10 06:30:12
Cango Sells 2,000 BTC Amid Miner Pivot to AI, Global Hashrate Drops 17%

Cango offloaded 2,000 BTC in a strategic deleveraging as the global Bitcoin hashrate fell about 17%, raising questions over whether this signals a buying opportunity or a warning. The move coincides with miners reallocating capital toward AI hardware, adding near-term sell pressure to BTC markets.

MiningAIDeleveragingHashrateBitcoin
Published at 2026-04-10 05:45:15
U.S. Treasury Opens Hacker Alert Program to Crypto Firms

The U.S. Department of the Treasury will allow cryptocurrency companies to enroll in a program that delivers timely cybersecurity threat and hacker warning alerts, enabling faster information-sharing with federal authorities.

CybersecurityU.S. TreasuryCryptocurrencyRegulationInfo Sharing
Published at 2026-04-09 17:15:44
Binance to Delist Six Crypto Assets on April 23, 2026

Binance announced on X that it will delist six crypto assets, with removals taking effect April 23, 2026. Users should review the exchange notice and manage holdings before the deadline.

BinanceExchangeDelistingMarket ImpactCryptocurrency
Published at 2026-04-09 09:15:07
Zcash Surges 30% to $336 After US–Iran Ceasefire News

Zcash rallied over 30% on April 8 to $336.50 following reports of a US–Iran ceasefire, hitting its highest level since January. The privacy-focused token was among the day's top-performing assets.

Market RallyZECCryptocurrencyPrivacyZcash
Published at 2026-04-09 08:00:15

DeFi

All DeFi posts

Bitcoin

All Bitcoin posts

Derivatives

All Derivatives posts

Dogecoin

All Dogecoin posts

On-Chain

All On-Chain posts