North Korean hackers, through the Lazarus group, have employed deceptive tactics targeting cryptocurrency developers by creating fake companies. According to Foresight News, they established two such firms: Blocknovas LLC in New Mexico and Softglide LLC in New York. These fraudulent businesses used false job offers to lure developers into their network, allowing them to inject malware onto unsuspecting victims’ devices and then steal cryptocurrency wallets and developer credentials. Silent Push’s research supports this, confirming the involvement of a specific Lazarus subgroup in these attacks. The FBI has taken action by seizing the domain associated with Blocknovas.