Lazarus Hackers Target Crypto Founders with Fake Zoom Calls

The post Lazarus Hackers Target Crypto Founders with Fake Zoom Calls appeared on BitcoinEthereumNews.com.

Lazarus Group targets crypto founders with fake Zoom calls. Hackers use pre-recorded footage to impersonate trusted contacts. The Lazarus Group, a North Korean-affiliated cybercrime syndicate, attempted to hack Manta Network co-founder Kenny Li. The attack was carried out by the attackers by using a fake Zoom call to try to steal the cryptocurrency assets by using malicious software. On April 17, 2025, the incident showed how the hackers posed as the trusted contact on Telegram to schedule a Zoom meeting. In the course of the call, Li noticed strange prompts, such as a request for camera access and a script file download, that set off alarms. He deleted their messages and left the meeting,  later, he confirmed that the contact had blocked him. Li’s experience is part of a growing trend of Zoom based attacks against the crypto community. These tactics have been linked to the Lazarus Group by cybersecurity experts, who have exploited vulnerabilities in Web3 infrastructure. How Lazarus Exploits Zoom for Crypto Scams The attack on Li involved a fake Zoom call using pre-recorded footage from previous meetings that were probably obtained by compromising team members’ accounts. The audio did not work, and familiar faces were shown, mimicking a legitimate meeting, before a prompt to download a script file appeared. The tactic is similar to what has been previously reported about Zoom scams. SlowMist conducted a 2024 investigation that found hackers were using fake Zoom interfaces to trick users to download malware. These malicious files steal system data, browser cookies and cryptocurrency wallet credentials and send them to the remote server of the attackers. The Lazarus Group’s methods have changed from brute force to social engineering to get around traditional security. These attacks are especially dangerous to crypto founders and developers because they impersonate trusted contacts and use…

Leave a Reply

Your email address will not be published. Required fields are marked *

Filed under: News - @ April 23, 2025 4:20 am