'The attacker completed in under five minutes': Experts warn of North Korea-linked campaign using fake Zoom meetings to target crypto execs
North Korean-linked hackers from the BlueNoroff group are targeting cryptocurrency executives using sophisticated fake Zoom meetings. The attackers use AI-generated videos and cloned websites to trick victims into installing malware within minutes. This campaign enables rapid credential theft and full system compromise.
- ▪The attackers are part of BlueNoroff, a subgroup of North Korea's Lazarus Group, focused on financial gain.
- ▪They create realistic fake Zoom calls using AI-generated headshots and video editing tools to impersonate real Web3 industry figures.
- ▪Victims are lured via Calendly invitations and prompted to 'update' their Zoom SDK, which downloads malware instead.
- ▪A clipboard hijacking technique replaces legitimate commands with malicious ones to deploy malware.
- ▪The attack can lead to full system compromise and persistent access to the victim's device.
Opening excerpt (first ~120 words) tap to expand
Pro Security 'The attacker completed in under five minutes': Experts warn of North Korea-linked campaign using fake Zoom meetings to target crypto execs News By Sead Fadilpašić published 28 April 2026 A highly sophisticated scam will leave you questioning what's real When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. (Image credit: Shutterstock) Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter State-sponsored attackers crafted convincing fake video calls to target cryptocurrency firmsA clipboard hijack trick replaced benign commands with malware‑deploying codeThe operation enabled rapid…
Excerpt limited to ~120 words for fair-use compliance. The full article is at TechRadar.
Discussion
0 commentsMore from TechRadar
