COINOTAG News reported on December 15 that Security Alliance, a cybersecurity nonprofit, has flagged a persistent wave of crypto-focused scams tied to North Korean actors. The group is exploiting counterfeit Zoom meeting invitations to lure victims into malware-enabled sessions.
The attack sequence begins with a Telegram message from an account that seems to be an acquaintance. The dialogue then transitions to a Zoom catch-up invite. Once the call starts, the attacker fabricates audio issues and delivers a patch file that injects malware and exposes private keys.
Security researcher Taylor Monahan warns that this technique has reportedly siphoned off over $300 million in crypto assets from victims, highlighting a material risk to wallet security and digital asset markets.
Readers should verify sender identity, decline unsolicited file exchanges, and avoid downloading attachments from untrusted sources. Use hardware-backed storage for private keys, enable multi-factor authentication, and maintain regular monitoring of crypto wallets to mitigate such threats.