Türkçe
Español
Kenny Li, co-founder of the Manta Network, recently revealed a serious cybersecurity attack attempt. The attack was attributed to the North Korean-linked hacker group Lazarus, who targeted him through a sophisticated phishing scheme conducted via Zoom. Li was lured into a fake meeting, but he managed to detect the threat just in time to prevent further damage.
Realistic Trap via Zoom: Familiar Faces, No Sound
Li detailed the incident, which began when someone he knew contacted him through Telegram. The meeting was arranged on Zoom, where participants had their cameras on. Initially, he did not suspect anything unusual as he recognized the faces in the meeting. However, the absence of sound and a prompt stating that “Zoom needed an update” raised his suspicions when they requested him to download a script file.
Realizing that the file was not an update but a malware-laden script, Li immediately ended the meeting. He then attempted to re-establish contact via Telegram to verify the identity of the other party. However, he soon found that all messages had been deleted, and he had been blocked.
Systematic Attack Attempts on the Community
It quickly became apparent that this incident was not isolated. Other community members, including those from ContributionDAO, reported similar targeting methods. The insistence on installing a special “commercial version” of Zoom and the outright rejection of alternatives like Google Meet indicated that the attack was systematically planned.
Attackers employ familiar faces to gain their targets’ trust, disable audio communication during video calls, and then pressure them into downloading malware under the guise of a fake update. The targeting of managers and developers in the cryptocurrency sector highlights how hacker groups like Lazarus are using increasingly sophisticated tactics.
Experts recommend that participants in Zoom or similar platforms terminate meetings promptly when they notice unusual behaviors and verify identities through alternative means.
