Lazarus Group Suspected in Renewed Wave of Cyberattacks Against Crypto Leaders
Binance co-founder Changpeng “CZ” Zhao revealed that his Google account was recently targeted by “government-backed attackers,” sparking fresh concerns over cyber threats from state-sponsored hacking groups such as North Korea’s Lazarus Group.
In a post shared on X (formerly Twitter), Zhao said he received a security alert from Google warning that his account was being targeted. “I get this warning from Google once in a while. Does anyone know what this is? North Korea Lazarus? Not that I have anything important on my account,” Zhao wrote.
The Lazarus Group has become notorious for orchestrating some of the largest cryptocurrency hacks in history, including the $1.4 billion Bybit exploit earlier this year — the biggest crypto heist to date.
Experts Warn of Expanding State-Backed Cyber Activity
“U.S. intelligence reports indicate a sophisticated network of agents posing as remote IT workers, funneling significant funds back to Pyongyang,” said Anndy Lian, an intergovernmental blockchain adviser. He added that **“a government official also received a similar prompt as CZ, indicating that his account was targeted by government-backed hackers.”_
Another cybersecurity analyst noted that Google’s security systems rarely issue such warnings unless there is clear evidence of advanced persistent threat (APT) activity, suggesting that nation-state actors were indeed involved.
North Korean Hackers Infiltrating Crypto Firms
This incident comes three weeks after Zhao warned about North Korean operatives infiltrating crypto companies by posing as developers and security engineers.
“They pose as job candidates to get positions in crypto firms, giving them a foot in the door to steal internal data,” Zhao wrote in a September post.
A report by Security Alliance (SEAL) identified over 60 fake developer profiles linked to North Korean IT operatives. These agents have successfully stolen more than $900,000 from crypto startups, while broader 2024 data shows $1.34 billion in digital assets stolen across 47 incidents — a 102% increase from 2023, according to Chainalysis.
Cybersecurity experts urge crypto companies to implement dual wallet systems, zero-trust access controls, and real-time AI-driven threat detection to counter sophisticated attacks.
As Zhao’s warning highlights, state-backed hacking campaigns are intensifying, targeting not only exchanges but also executives and developers across the global crypto ecosystem.
Disclaimer
This content is for informational purposes only and does not constitute financial, investment, or legal advice. Cryptocurrency trading involves risk and may result in financial loss.