TR
Bitcoin
Bitcoin (BTC)
$83,860.00 2.25524
Bitcoin price
Ethereum
Ethereum (ETH)
$1,808.74 1.29751
Ethereum price
BNB
BNB (BNB)
$596.38 1.45017
BNB price
Solana
Solana (SOL)
$122.36 6.10272
Solana price
XRP
XRP (XRP)
$2.12 3.48028
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000122 0.19876
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000071 7.57555
Pepe price
Bonk
Bonk (BONK)
$0.0000112 3.50498
Bonk price
dogwifhat
dogwifhat (WIF)
$0.380769 1.05622
dogwifhat price
Popcat
Popcat (POPCAT)
$0.164223 5.44439
Popcat price
Bitcoin
Bitcoin (BTC)
$83,860.00 2.25524
Bitcoin price
Ethereum
Ethereum (ETH)
$1,808.74 1.29751
Ethereum price
BNB
BNB (BNB)
$596.38 1.45017
BNB price
Solana
Solana (SOL)
$122.36 6.10272
Solana price
XRP
XRP (XRP)
$2.12 3.48028
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000122 0.19876
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000071 7.57555
Pepe price
Bonk
Bonk (BONK)
$0.0000112 3.50498
Bonk price
dogwifhat
dogwifhat (WIF)
$0.380769 1.05622
dogwifhat price
Popcat
Popcat (POPCAT)
$0.164223 5.44439
Popcat price
Bitcoin
Bitcoin (BTC)
$83,860.00 2.25524
Bitcoin price
Ethereum
Ethereum (ETH)
$1,808.74 1.29751
Ethereum price
BNB
BNB (BNB)
$596.38 1.45017
BNB price
Solana
Solana (SOL)
$122.36 6.10272
Solana price
XRP
XRP (XRP)
$2.12 3.48028
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000122 0.19876
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000071 7.57555
Pepe price
Bonk
Bonk (BONK)
$0.0000112 3.50498
Bonk price
dogwifhat
dogwifhat (WIF)
$0.380769 1.05622
dogwifhat price
Popcat
Popcat (POPCAT)
$0.164223 5.44439
Popcat price
Bitcoin
Bitcoin (BTC)
$83,860.00 2.25524
Bitcoin price
Ethereum
Ethereum (ETH)
$1,808.74 1.29751
Ethereum price
BNB
BNB (BNB)
$596.38 1.45017
BNB price
Solana
Solana (SOL)
$122.36 6.10272
Solana price
XRP
XRP (XRP)
$2.12 3.48028
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000122 0.19876
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000071 7.57555
Pepe price
Bonk
Bonk (BONK)
$0.0000112 3.50498
Bonk price
dogwifhat
dogwifhat (WIF)
$0.380769 1.05622
dogwifhat price
Popcat
Popcat (POPCAT)
$0.164223 5.44439
Popcat price

North Korea’s latest crypto hack reveals Web3’s security weakness: pro

Micah Zimmerman
By
Jayson Derrick
Edited by
News
North Korea’s latest crypto hack reveals Web3’s security weakness: pro

Oak Security’s Jan Philipp Fritsche says Web3 needs to stop ignoring basic OPSEC hygiene, especially as state-sponsored threats rise.

As North Korea’s “ClickFake” campaign draws renewed attention to cyberattacks on crypto firms, security experts say Web3’s biggest vulnerability isn’t smart contracts — it’s people.

Jan Philipp Fritsche, Managing Director at Oak Security, argued in a note to crypto.news that most blockchain projects lack even the most basic operational security standards

Fritsche, a former European Central Bank analyst who now advises and audits protocols says the real risk lies in how teams manage devices, permissions, and production access.

“The ClickFake campaign shows just how easily teams can be compromised,” Fritsche said in a note. “Web3 projects have to assume that most of your employees are exposed to cyber threats outside their work environment.”

You might also like: South Korean gets prison time for $2m crypto scam promising 50% returns

North Korea’s campaign

For background, North Korea’s Lazarus Group is using a cyber campaign called “ClickFake Interview” targeting cryptocurrency professionals. The group posed as recruiters on LinkedIn and X, luring victims into fake interviews to distribute malware. 

The malware, named “ClickFix,” gave attackers remote access to steal sensitive data like crypto wallet credentials. Researchers said Lazarus used realistic documents and full interview conversations to enhance credibility.

Most DAOs and early-stage teams still rely on personal devices — often used for both development and Discord chatting — which leaves them exposed to nation-state level attackers. Unlike traditional enterprises, many DAOs have no way to enforce security standards.

“There’s no way to enforce security hygiene,” Fritsche said. “Too many teams, especially smaller ones, ignore this and hope for the best.”

Fritsche says even the assumption that a device is clean may be flawed. For high-value projects, that means developers should never have the ability to push changes to production unilaterally. 

“Company-issued devices with limited privileges are a good start,” Fritsche said. “But you also need fail-safes—no single user should have that kind of control.”

The lesson from traditional finance? Every risk is assumed to be real until proven otherwise. 

“In TradFi, you need a keycard just to check your inbox,” Fritsche said. “That standard exists for a reason. Web3 needs to catch up.”

You might also like: Circle considering IPO delay due to market downturn: report

Deep Dives

Chart of the week: ATOM gears for double-digit gains with staking support
Markets
Read more - Chart of the week: ATOM gears for double-digit gains with staking support

Chart of the week: ATOM gears for double-digit gains with staking support

Cosmos Hub ATOM Cosmos Hub
Circle files IPO amid declining profits and stiffening competition — will this shake Tether’s stablecoin dominance?
Feature
Read more - Circle files IPO amid declining profits and stiffening competition — will this shake Tether’s stablecoin dominance?

Circle files IPO amid declining profits and stiffening competition — will this shake Tether’s stablecoin dominance?

USDC USDC USDC Tether USDT Tether Ripple USD RLUSD Ripple USD
Solving the payment problem for AI in web3 | Opinion
Opinion
Read more - Solving the payment problem for AI in web3 | Opinion

Solving the payment problem for AI in web3 | Opinion

USDC USDC USDC
Nasdaq Composite on track for biggest one-day percentage drop since 2020, will Bitcoin survive the crash?
Markets
Read more - Nasdaq Composite on track for biggest one-day percentage drop since 2020, will Bitcoin survive the crash?

Nasdaq Composite on track for biggest one-day percentage drop since 2020, will Bitcoin survive the crash?

Bitcoin BTC Bitcoin
EXCLUSIVE: Datagram unveils decentralized backend for scalable DePIN networks
News
Read more - EXCLUSIVE: Datagram unveils decentralized backend for scalable DePIN networks

EXCLUSIVE: Datagram unveils decentralized backend for scalable DePIN networks

Trump’s crypto reserve needs a privacy layer | Opinion
Opinion
Read more - Trump’s crypto reserve needs a privacy layer | Opinion

Trump’s crypto reserve needs a privacy layer | Opinion

Bitcoin BTC Bitcoin Ethereum ETH Ethereum XRP XRP XRP
Is Dogecoin hype dead? Elon Musk says DOGE not in US plans
Markets
Read more - Is Dogecoin hype dead? Elon Musk says DOGE not in US plans

Is Dogecoin hype dead? Elon Musk says DOGE not in US plans

Dogecoin DOGE Dogecoin Bitcoin BTC Bitcoin
Digital shift in Swiss economy shows ‘substantial opportunity’ for Swiss stablecoin, Bitcoin Suisse says
Feature
Read more - Digital shift in Swiss economy shows ‘substantial opportunity’ for Swiss stablecoin, Bitcoin Suisse says

Digital shift in Swiss economy shows ‘substantial opportunity’ for Swiss stablecoin, Bitcoin Suisse says

Pi Coin crashes nearly 80% — is Pi Network collapsing under its own weight?
Feature
Read more - Pi Coin crashes nearly 80% — is Pi Network collapsing under its own weight?

Pi Coin crashes nearly 80% — is Pi Network collapsing under its own weight?

Pi Network PI Pi Network Ethereum ETH Ethereum Solana SOL Solana
Stablecoins can hold central banks fiscally accountable | Opinion
Opinion
Read more - Stablecoins can hold central banks fiscally accountable | Opinion

Stablecoins can hold central banks fiscally accountable | Opinion

Bitcoin BTC Bitcoin Tether USDT Tether USDC USDC USDC

Related News

Lazarus Group allegedly makes a profit of $2.51m from selling WBTC
News
Read more - Lazarus Group allegedly makes a profit of $2.51m from selling WBTC

Lazarus Group allegedly makes a profit of $2.51m from selling WBTC

Wrapped Bitcoin WBTC Wrapped Bitcoin Ethereum ETH Ethereum Tether USDT Tether
North Korean IT workers ramp up infiltration of tech and crypto firms across Europe
News
Read more - North Korean IT workers ramp up infiltration of tech and crypto firms across Europe

North Korean IT workers ramp up infiltration of tech and crypto firms across Europe

Bitcoin BTC Bitcoin
Infamous mixing protocol eXch drops USDT, USDC as US authorities eye its role in Bybit theft
News
Read more - Infamous mixing protocol eXch drops USDT, USDC as US authorities eye its role in Bybit theft

Infamous mixing protocol eXch drops USDT, USDC as US authorities eye its role in Bybit theft

USDC USDC USDC Tether USDT Tether Dai DAI Dai
Advertise