Ketman Project Identifies 100 North Korean IT Workers Working In Web3

The Ketman project, funded by the Ethereum Foundation, identified 100 North Korean IT workers and warned about 53 projects employing DPRK operators.

The Ethereum Foundation has revealed that it funded a six-month project involving 100 North Korean operators who infiltrated Web3 companies under false identities.

The foundation on Thursday shared its ETH Rangers program, which was launched by the end of 2024 to provide “grants to individuals working on the security of public goods” in the ecosystem.

One of the recipients is using the capital to build the Ketman project, which focuses on investigating “fake developers” involved in crypto, particularly operators from North Korea.

Over a six-month payroll period, Ketman's project identified 100 different DPRK IT workers working in Web3 organizations, finding about 53 projects to alert them to the possibility of employing active DPRK operators.

“This work directly addresses one of the most pressing operational security threats facing the Ethereum ecosystem today,” the Ethereum Foundation said.

North Korean operators have been troubling the crypto sector, leading to the theft of billions worth of crypto over the years. One of North Korea's most high-profile hacking groups is known as the Lazarus group.

Ketman Project website articles on DPRK operatives. Source: Ketman Project

The Ethereum Foundation did not say in detail how the Ketman project was able to identify DPRK operators. But the project's website has extensive text explaining the “tactics, behavior and style of operation” the operators will deploy.

RELATED: CIA Combines AI ‘Coworkers' to Build Intelligence, Catch Spies

They include technical red flags such as reusing avatars and profile metadata across multiple GitHub accounts, accidentally exposing unrelated email addresses during screen sharing, and displaying default language settings such as Russian.

In addition to identifying North Korean operatives, the Ketman Project has developed an open-source detection tool to detect suspicious GitHub activity and developed an industry-standard framework for DPRK IT staff in collaboration with the blockchain-focused non-profit Security Alliance.

Magazine: No one knows if quantum secure encryption even works

Cointelegraph is committed to independent and transparent journalism. This news article is prepared in accordance with Cointelegraph's Editorial Policy and aims to provide accurate and up-to-date information. Readers are encouraged to verify information independently. Read our editorial policy

Tags: Blockchain, Crypto, ETH, Ethereum

Name	Price	24H %
Bitcoin(BTC)	$0.00	-2.17%
Ethereum(ETH)	$0.00	-3.27%
Tether(USDT)	$0.00	0.00%
XRP(XRP)	$0.00	-3.97%
BNB(BNB)	$0.00	-1.72%
USDC(USDC)	$0.00	-0.01%
Solana(SOL)	$0.00	-3.56%
TRON(TRX)	$0.00	0.570%
Lido Staked Ether(STETH)	$0.00	3.88%
Figure Heloc(FIGR_HELOC)	$0.00	1.89%

Ketman Project identifies 100 North Korean IT workers working in Web3

Ethereum short squeeze saw $24m of shorts liquidate in one hour as the Strait of Hormuz reopened.

ETH Accumulation Wallets Increase 33%: Will ETH Price Follow?

Schwab Crypto Spot will launch Bitcoin and Ethereum trading in a phased release

The Foundation will close the NFT marketplace after the sale

Ethereum Foundation Exposes 100 Crypto Companies Hacked by North Korean Operators

Charles Schwab Launches Spot Bitcoin and Ether Trading for Retail Investors

You may have missed

Bitcoin is set to rally against stocks, possibly chasing new highs

Ketman Project identifies 100 North Korean IT workers working in Web3

Bitcoin Bull runs ‘still early’ as BTC remains below key level

Stablecoins as FX Markets as Dividend Characteristic of Liquidity: Eco CEO

Sitemap

Legal Information

Pin It on Pinterest

More Stories

You may have missed

Sitemap

Legal Information

Categories

Pin It on Pinterest