Combining old and new news: In November 2025, Google Threat Intelligence Group (GTIG) reported that the North Korean hacking group UNC1069 was using AI models (such as Gemini) to develop and deploy malware targeting cryptocurrency wallet and exchange employees. Then, yesterday's Axios malware attack was thankfully detected in time; otherwise, besides a bunch of devices running the new version of OpenClaw being taken down, many other devices directly or indirectly dependent on Axios would have been eliminated… The true impact is hard to say; let's see what other hacking and theft incidents might occur later.
This article is machine translated
Show original
BlockBeats|We're hiring!
@BlockBeatsAsia
最新进展:谷歌将 axios 供应链攻击归因朝鲜组织 UNC1069🥷🥷
谷歌威胁情报团队(GTIG)和 Mandiant 将昨日 axios 供应链攻击归因于 UNC1069,一个自 2018 年起活跃、以金融动机为主的朝鲜背景黑客组织,历史攻击目标以加密货币和 AI 行业为主。
归因依据是此次部署的 WAVESHAPER.V2 后门与 UNC1069 x.com/BlockBeatsAsia…
From Twitter
Disclaimer: The content above is only the author's opinion which does not represent any position of Followin, and is not intended as, and shall not be understood or construed as, investment advice from Followin.
Like
Add to Favorites
Comments
Share
Relevant content
