Binance founder: How dangerous are North Korea's hackers in 2025?

INFBusiness
19.09.2025
Markets

“These North Korean hackers are sophisticated, creative, and patient,” warns Binance founder Changpeng “CZ” Zhao, referring to the professional hackers working for Kim Jong-un. The Lazarus Collective, in particular, repeatedly makes headlines.
Now they're using new strategies that pose increasing risks for employees, platforms, and even outsourced providers in the crypto space. They're now particularly likely to pose as job applicants.
“This is how they get their foot in the door. They're particularly interested in positions in development, security, and finance,” the Binance founder explains in an X-post. If they gain access to sensitive systems, they can steal important data.
Another tactic would be to pose as an employer. During fake interviews, the hackers would claim there was a problem with Zoom and send applicants a link to download an “update.”
This is malware designed to take control of the victim's device. They often disguise themselves as customers and send links in a customer support request to Binance, Kraken, or other crypto exchanges, which also contain a virus.
The oldest trick: “You pay/bribe your employees and outsourced providers for access to data.” This recently resulted in an Indian crypto exchange losing over $400 million. Binance itself has high security standards and has frozen assets linked to the North Korean hackers on several occasions.
Changpeng Zhao therefore advises crypto platforms to exercise extreme caution. The shadow army from Pyongyang recently struck mercilessly in Germany as well. Read more here: “The world's most expensive click: 2,000 Bitcoin stolen in seconds.”

Recommended Video: What's happening now with Bitcoin & Altcoins – Fed decision today!