cybersecurity

Google’s cybersecurity division Mandiant has issued a warning that threat actors linked to North Korea are increasingly incorporating AI-generated deepfake technology into sophisticated social engineering campaigns targeting cryptocurrency and fintech companies.
In a report released Monday, Mandiant detailed a recent investigation into a breach at a fintech firm attributed to UNC1069 — also known as “CryptoCore” — a threat cluster assessed to have strong ties to North Korea. The operation combined compromised Telegram accounts, fraudulent Zoom meetings, and a technique known as “ClickFix” to trick victims into executing malicious commands. Investigators also identified evidence that AI-generated video was used during the fake meeting to enhance the credibility of the impersonation.
Highly Targeted Social Engineering Campaigns
According to Mandiant, UNC1069 has expanded its focus beyond broad phishing campaigns to conduct highly personalized attacks aimed at organizations and individuals in the crypto ecosystem. Targets reportedly include software companies, blockchain developers, venture capital firms, and executive leadership teams.
The attack chain described in the report began when a victim was contacted via Telegram by what appeared to be a well-known crypto industry executive. However, the account had allegedly been compromised and was under attacker control. After establishing rapport, the attacker sent a Calendly scheduling link for a 30-minute meeting, redirecting the victim to a fraudulent Zoom session hosted on infrastructure controlled by the threat group.
During the call, the victim reportedly observed what appeared to be a recognizable crypto CEO on video — later assessed to be AI-generated deepfake content.
Shortly after the meeting began, the attackers claimed there were audio issues and instructed the victim to execute specific “troubleshooting” commands — a variation of the ClickFix technique. This action triggered the deployment of malware. Subsequent forensic analysis identified seven distinct malware families on the victim’s system, designed to steal login credentials, browser data, and session tokens for financial theft and further impersonation.
Escalation of Crypto Theft Linked to North Korea
The warning comes amid continued growth in crypto-related theft attributed to North Korean-linked actors. In mid-December, blockchain analytics firm Chainalysis reported that hackers associated with Pyongyang stole approximately $2.02 billion in digital assets in 2025 — a 51% increase compared to the previous year. The cumulative value of digital assets allegedly stolen by such groups is now estimated at around $6.75 billion, even though the total number of incidents has declined.
These figures suggest a shift toward fewer but more financially impactful operations.
Security analysts note that rather than relying on mass phishing emails, groups like CryptoCore are increasingly leveraging trusted communication channels — including messaging apps and video conferencing platforms — to exploit familiarity and professional trust. By embedding malicious activity within routine business interactions, attackers reduce visible red flags and increase the likelihood of success.
Deepfake and AI Amplify Impersonation Tactics
Fraser Edwards, Co-founder and CEO of decentralized identity company cheqd, stated that the incident reflects a broader evolution in cybercrime tactics, particularly as remote collaboration and virtual meetings become standard across the digital asset sector.
He emphasized that the effectiveness of such operations lies in their subtlety: familiar senders, recognizable meeting formats, and no obvious malicious attachments. Trust is established before technical safeguards have the opportunity to intervene.
According to Edwards, deepfake video is often introduced during escalation stages — such as live calls — where the visual presence of a familiar face can override suspicion triggered by unusual requests or technical disruptions. The objective is not prolonged interaction, but sufficient realism to prompt the target to take a critical action.
AI is also reportedly being used beyond video impersonation. Tools capable of drafting context-aware messages, mimicking tone, and replicating communication styles make fraudulent outreach significantly harder to detect. As AI agents become more integrated into daily workflows — sending messages, scheduling meetings, and acting on behalf of users — the potential scale of automated impersonation increases.
The Need for Default Security Infrastructure
Edwards argues that expecting individuals to reliably detect deepfakes is unrealistic. Instead, organizations should focus on strengthening default security systems, improving authentication layers, and clearly signaling content authenticity.
Rather than relying solely on user vigilance, experts recommend implementing multi-factor authentication, hardware security keys, session monitoring, and zero-trust frameworks — particularly for companies handling digital assets.
As AI capabilities advance, the line between authentic and synthetic communication continues to blur, creating new operational risks for crypto-native firms that rely heavily on digital trust.
This article is provided for informational purposes only and does not constitute investment advice. Readers should conduct their own research and assess risk before making any financial decisions.
Follow for more verified crypto security updates and institutional market insights.
#CryptoNews #CyberSecurity #Aİ

لا فائدة من قضاء ساعات في تحليل الرسوم البيانية واصطياد الصفقات المثالية إذا لم نعرف كيفية إغلاق باب منزلنا. في التداول، أمانك هو أكبر أصولك، وإذا لم تحافظ عليه، سيفعل شخص آخر ذلك نيابة عنك (ولن يعجبك النتيجة). 💅☕️
قواعدي الذهبية لحساب محمي:
2FA الحقيقي: إذا كنت لا تزال تستخدم الرسائل القصيرة، فأنت تعيش في الماضي. قم بتفعيل Google Authenticator أو، الأفضل، استخدم مفتاحًا ماديًا.
التصيد الاحتيالي: Binance لا تطلب أبدًا، تحت أي ظرف من الظروف، مفاتيحك عبر الرسائل المباشرة. الفطرة السليمة هي أفضل مؤشر تقني لديك.

In the world of blockchain, security is often discussed in terms of code and cryptography. However, for the next generation of Enterprise-grade AI applications, digital security alone is not enough. As we enter early 2026, the launch of the Vanar V23 Protocol has introduced a new paradigm: Physical-Layer Security.
By moving beyond simple software-based checks, the V23 protocol ensures that the $VANRY ecosystem is the most secure and resilient environment for autonomous agents and institutional data.

1. The "Open Port Verification" System
The most significant breakthrough in V23 is the Open Port Verification system. Traditional networks often struggle with "ghost nodes" or malicious actors who mask their true location to clog the network.
Vanar’s V23 protocol mandates a rigorous check of every node’s entry points. It’s not just about having the right cryptographic key; the network verifies the physical "doorway" (the port) through which the node communicates. This ensures that only high-performance, legitimate hardware can participate in the consensus process, effectively removing invalid or underperforming nodes from the network.
2. Eliminating Sybil Attacks via Dual Identity Authentication
One of the oldest threats to decentralized networks is the Sybil Attack, where a single malicious actor creates thousands of fake identities to overwhelm the system. V23 solves this through Dual Identity Authentication.
Every node in the Vanar network must prove its identity on two levels:
* Digital Identity: Cryptographic proof that the node is authorized.
* Network Identity (IP & Port): A physical-layer check that binds the digital node to a specific, unique network location.
This "one-node, one-physical-presence" rule makes it economically and technically impossible for an attacker to spawn fake identities, creating a "Fort Knox" environment for AI agents that require 100% uptime and integrity.
3. Why Physical Security Matters for AI
Why go to this extreme? Because AI Agents and PayFi handle real economic value. If an enterprise is using Vanar to settle global invoices or store sensitive semantic data, they cannot afford even a 1% risk of a network-level manipulation.
By securing the stack at the physical layer, V23 provides:
* Zero-Trust Reliability: You aren't just trusting a social consensus; you are trusting a physically verified network.
* Enterprise Compliance: V23’s security standards align with the strict requirements of global financial regulators and corporate IT departments.
* Performance Consistency: By filtering out bad nodes at the port level, the network maintains a stable 5-10 second ledger update time, even under heavy load.
4. $VANRY : The Foundation of a Trusted Web
The utility of the $VANRY token is deeply tied to this security. As the network becomes the "Gold Standard" for secure AI infrastructure, the demand from enterprises for node validation and transaction security continues to scale. $VANRY isn't just powering a blockchain; it’s securing a global, intelligent infrastructure.
Beyond the Digital Barrier
While other chains are still fighting software-level vulnerabilities, Vanar has moved the battlefield to the physical layer. The V23 protocol proves that for AI to be truly enterprise-ready, it needs more than just smart contracts—it needs a secure, verified, and physically grounded home.
The future of security isn't just code; it's V23.
#Vanar #VANRY #V23Protocol #CyberSecurity #AIEconomy @Vanar

معايير الأمان والخصوصية في شبكة plasma: الحصن الرقمي لمعاملاتك الممالية
في عصرنا الحالي الذي أصبحت فيه الهجمات السيبرانية والتهديدات الرقمية تمثل خطراً مستمراً على الاستقرار المالي العالمي، تضع @undefined معايير الأمان والخصوصية في مقدمة أولوياتها الاستراتيجية. إن الشبكة لا تكتفي بتقديم السرعة الفائقة في معالجة البيانات، بل تقدم بنية تحتية تقنية محصنة بالكامل تجعل من تقنية XPLالخيار الأكثر أماناً وموثوقية للمؤسسات المالية الكبرى والأفراد الذين يبحثون عن حماية مطلقة لأصولهم الرقمية المستقرة في عام 2026.
تشفير متطور وحماية فائقة من الطبقة الأولى:
تعتمد شبكة #plasma في جوهرها على بروتوكولات تشفير معقدة من الجيل القادم، حيث يتم تأمين وتوثيق كل معاملة مالية عبر طبقات متعددة من التحقق الرقمي المشفر. على عكس العديد من الشبكات الأخرى التي تعاني من ثغرات برمجية متكررة في العقود الذكية، تم بناء وبرمجة نواة $XPL لتكون مقاومة تماماً للتلاعب أو الاختراق، مما يضمن أن الأصول المالية لا يمكن تحويلها أو التصرف بها إلا من قبل أصحابها الشرعيين حصراً. هذا الالتزام الصارم بالأمان الجذري في الطبقة الأولى هو ما يجعل من @undefined الحصن المنيع الذي يثق فيه كبار المستثمرين والمستشارين الماليين لتخزين ونقل قيمهم المالية الضخمة حول العالم.
الخصوصية المالية والامتثال التنظيمي الذكي:
تحقق شبكة plasma التوازن الصعب والمطلوب بين ضمان الخصوصية الفردية للمستخدمين والالتزام التام بمعايير الامتثال الدولية لمكافحة الجرائم المالية. تتيح الشبكة للمستخدمين العاديين إجراء معاملاتهم المالية بخصوصية تامة واستقلالية كاملة، وفي الوقت نفسه، توفر أدوات تقنية متطورة تضمن شفافية البيانات للمؤسسات المنظمة والجهات الرقابية عند الحاجة الرسمية فقط. إن هذه المرونة العالية لشبكة @undefined في التعامل مع البيانات المالية الحساسة تجعلها تتفوق بمراحل على الحلول التقليدية، حيث توفر بيئة تداول آمنة ومنظمة داخل نظام $XPL البيئي المتكامل، مما يضمن الحفاظ على شرعية وموثوقية كل حركة مالية تتم على البلوكشين دون المساس بحقوق المستخدم في الخصوصية.
الخلاصة:
الأمان ليس مجرد ميزة إضافية في شبكة @plasma، بل هو الركيزة الأساسية التي بُني عليها المشروع بالكامل. من خلال دمج التكنولوجيا الدفاعية المتطورة مع الرؤية المالية الواعية، تضمن $XPL لمستخدميها راحة البال التامة في عالم رقمي مليء بالتحديات، مؤكدة ريادتها كأكثر الشبكات أماناً في عصر الاقتصاد اللامركزي الحديث.
سؤال للمجتمع: ما هي الميزة الأمنية التي تعتبرها الأهم عند اختيارك لشبكة بلوكشين لنقل أصولك الكبيرة؟ شاركونا معاييركم!
#BinanceSquare #CyberSecurity #BlockchainSafety #PrivacyMatters

لقد كانت هناك تكهنات مستمرة بأن الولايات المتحدة يمكن أن "تفصل" الصين عن الإنترنت العالمي في غضون دقائق. stems من حقيقة أن من بين 13 خادم جذر منطقي أصلي على مستوى العالم، يوجد 10 في الولايات المتحدة، في حين أن الصين لا تمتلك أي منها. 🇺🇸➡️🇨🇳

ومع ذلك، فإن رؤية هذا على أنه "قنبلة موقوتة" هو تبسيط مفرط لكيفية عمل الشبكات الحديثة. بينما تعود أصول الإنترنت (ARPANET) و"دفتر العناوين" المبكر (نظام خادم الجذر) تاريخيًا إلى الولايات المتحدة، فقد تطور المشهد الرقمي إلى قلعة مرنة وموزعة. 🏰💻