TechFlow reports that on April 15, Zerion disclosed that some of its corporate hot wallets were recently targeted by an AI-driven social engineering attack linked to North Korean hackers, resulting in losses of approximately $100,000. Zerion stated that user funds, applications, and infrastructure remain unaffected, and it has proactively disabled its web application to mitigate risks.
This incident marks the second such attack this month, following the $280 million theft from Drift Protocol. It highlights how North Korean hackers are leveraging AI to refine their social engineering tactics, primarily targeting employees and developers at cryptocurrency companies. The Security Alliance (SEAL) has tracked the associated hacker group UNC1069 conducting low-pressure, multi-week social engineering campaigns across platforms including Telegram, LinkedIn, and Slack, and using AI tools to edit images and videos to enhance attack efficiency.
