Akshit (Epoch Protocol) lost over $20k after running a malicious repo linked to the “contagious interview” malware, allegedly tied to DPRK hackers. The code granted root access, leaked env keys, and drained multiple EVM and Solana wallets—highlighting how dev hygiene lapses can be fatal.

Akshit (Epoch Protocol) lost over $20k after running a malicious repo linked to the “contagious interview” malware, allegedly tied to DPRK hackers. The code granted root access, leaked env keys, and drained multiple EVM and Solana wallets—highlighting how dev hygiene lapses can be fatal.

𝕏/@OstwalAk •

Revision history

10 recorded changes

Want your article here?

Promote with Leviathan News

More on DPRK

U.S. Treasury sanctions six individuals and two entities across Asia and Europe for running North Korea IT worker fraud schemes that defraud U.S. businesses and fund the DPRK’s WMD programs, including nearly $800 million in 2024

U.S. Treasury sanctions six individuals and two entities across Asia and Europe for running North Korea IT worker fraud schemes that defraud U.S. businesses and fund the DPRK’s WMD programs, including nearly $800 million in 2024

home.treasury.gov ·

U.S. Treasury tells Congress crypto mixers protect financial privacy but remain a top tool for DPRK hackers, fraud and ransomware operators

U.S. Treasury tells Congress crypto mixers protect financial privacy but remain a top tool for DPRK hackers, fraud and ransomware operators

home.treasury.gov ·

US sentences Maryland man to 15 months for helping North Korean operatives infiltrate US tech firms, giving DPRK-linked workers access to sensitive government systems and expanding a wider scheme funding Pyongyang’s cyber and weapons programs.

US sentences Maryland man to 15 months for helping North Korean operatives infiltrate US tech firms, giving DPRK-linked workers access to sensitive government systems and expanding a wider scheme funding Pyongyang’s cyber and weapons programs.

decrypt.co ·

Up to 20% of crypto firms may unknowingly employ North Korean operatives, with nearly 40% of job applications linked to DPRK infiltration. Experts warn these embedded workers fuel billions in crypto theft for nuclear programs.

Up to 20% of crypto firms may unknowingly employ North Korean operatives, with nearly 40% of job applications linked to DPRK infiltration. Experts warn these embedded workers fuel billions in crypto theft for nuclear programs.

crypto.news ·

JP (THORChain co-founder & Vultisig co-founder) had a personal wallet drained for $1.35M by DPRK on September 9, 2025 after a meeting call scam on Telegram.

JP (THORChain co-founder & Vultisig co-founder) had a personal wallet drained for $1.35M by DPRK on September 9, 2025 after a meeting call scam on Telegram.

ꘜ/@investigations ·

OFAC hit Russian national Vitaliy Sergeyevich Andreyev, a North Korean individual, and two entities, for enabling DPRK-linked fraud. Elliptic data show Andreyev’s sanctioned Bitcoin address received over $600K tied to the 2023 Atomic Wallet hack, with cross-chain layering used for obfuscation.

OFAC hit Russian national Vitaliy Sergeyevich Andreyev, a North Korean individual, and two entities, for enabling DPRK-linked fraud. Elliptic data show Andreyev’s sanctioned Bitcoin address received over $600K tied to the 2023 Atomic Wallet hack, with cross-chain layering used for obfuscation.

elliptic.co ·

U.S. Treasury sanctions six individuals and two entities across Asia and Europe for running North Korea IT worker fraud schemes that defraud U.S. businesses and fund the DPRK’s WMD programs, including nearly $800 million in 2024

U.S. Treasury sanctions six individuals and two entities across Asia and Europe for running North Korea IT worker fraud schemes that defraud U.S. businesses and fund the DPRK’s WMD programs, including nearly $800 million in 2024

home.treasury.gov ·

U.S. Treasury tells Congress crypto mixers protect financial privacy but remain a top tool for DPRK hackers, fraud and ransomware operators

U.S. Treasury tells Congress crypto mixers protect financial privacy but remain a top tool for DPRK hackers, fraud and ransomware operators

home.treasury.gov ·

US sentences Maryland man to 15 months for helping North Korean operatives infiltrate US tech firms, giving DPRK-linked workers access to sensitive government systems and expanding a wider scheme funding Pyongyang’s cyber and weapons programs.

US sentences Maryland man to 15 months for helping North Korean operatives infiltrate US tech firms, giving DPRK-linked workers access to sensitive government systems and expanding a wider scheme funding Pyongyang’s cyber and weapons programs.

decrypt.co ·

Up to 20% of crypto firms may unknowingly employ North Korean operatives, with nearly 40% of job applications linked to DPRK infiltration. Experts warn these embedded workers fuel billions in crypto theft for nuclear programs.

Up to 20% of crypto firms may unknowingly employ North Korean operatives, with nearly 40% of job applications linked to DPRK infiltration. Experts warn these embedded workers fuel billions in crypto theft for nuclear programs.

crypto.news ·

JP (THORChain co-founder & Vultisig co-founder) had a personal wallet drained for $1.35M by DPRK on September 9, 2025 after a meeting call scam on Telegram.

JP (THORChain co-founder & Vultisig co-founder) had a personal wallet drained for $1.35M by DPRK on September 9, 2025 after a meeting call scam on Telegram.

ꘜ/@investigations ·

OFAC hit Russian national Vitaliy Sergeyevich Andreyev, a North Korean individual, and two entities, for enabling DPRK-linked fraud. Elliptic data show Andreyev’s sanctioned Bitcoin address received over $600K tied to the 2023 Atomic Wallet hack, with cross-chain layering used for obfuscation.

OFAC hit Russian national Vitaliy Sergeyevich Andreyev, a North Korean individual, and two entities, for enabling DPRK-linked fraud. Elliptic data show Andreyev’s sanctioned Bitcoin address received over $600K tied to the 2023 Atomic Wallet hack, with cross-chain layering used for obfuscation.

elliptic.co ·

Explore the full feed

Up nextLeviathan SQUID DAO launches recovery pool for lenders affected by Llama Lend bad debt on Fraxtal