In a big step for crypto safety, the
The Ethereum Foundation called this work key to fixing “one of the most pressing operational security threats facing the Ethereum ecosystem today.” North Korean groups have stolen billions in crypto. Finding these workers stops attacks before they start.
ETH Rangers is a fresh effort by the Ethereum Foundation. It funds solo experts or small teams to hunt for risks in the ecosystem. The goal is to make Ethereum safer for everyone. The program started late last year. It offers stipends for real security research.
One funded project, called the Ketman Project, led to this big find. Over six months, the team dug deep into patterns of sneaky behavior. They shared their results openly to help the whole industry.
The team did not share every secret trick. But their website lists clear red flags they tracked. These are simple signs that someone is not who they say:
These clues built a strong way to spot fakes. The <100 North Korean IT Workers> were active in Web3 orgs, from dev teams to open-source projects.
The Ketman Project did more than just find people. They made an open-source tool. It scans GitHub for suspicious activity. Anyone can use it to check profiles.
They also teamed up with the Security Alliance, a nonprofit for blockchain safety. Together, they wrote a standard guide on how to ID these threats. This framework helps companies check hires and contributors better.
North Korea’s hackers are a top danger in crypto. Groups like Lazarus have taken over $3 billion since 2017. They hit exchanges, bridges, and DeFi apps hard.
But the real sneaky part is infiltration. DPRK workers get jobs or contribute to code. This lets them learn secrets, plant backdoors, or steal data. The
Examples include:
This Ethereum project hits the root. By exposing <100 DPRK Workers>, it warns everyone to watch closer.
Web3 is built on trustless systems. But people still run the show. A fake dev can cause huge damage. This find shows how deep the problem goes. 100 workers mean many orgs were at risk.
Lessons for teams:
The open tools from this project make it easier. Ethereum leads by funding this. Other chains should follow.
ETH Rangers will keep funding more work. Expect better tools and guides soon. The community must stay alert. Share red flags. Use the new detection software.
This is a win, but the fight goes on. DPRK groups adapt fast. Web3 needs strong defenses to grow safe.
Q: How many DPRK workers were found?
A: Exactly 100, linked to Web3 orgs.
Q: What is the Ketman Project?
A: A funded team that tracked patterns and built tools.
Q: Can I use their detection tool?
A: Yes, it’s open-source on GitHub.
Q: Why target GitHub?
A: Many Web3 jobs start there with code contributions.
Join the talk on crypto security. Stay safe in Web3!
Discuss this news on our Telegram Community. Subscribe to us on Google news and do follow us on Twitter @Blockmanity
Did you like the news you just read? Please leave a feedback to help us serve you better
Disclaimer: Blockmanity is a news portal and does not provide any financial advice. Blockmanity's role is to inform the cryptocurrency and blockchain community about what's going on in this space. Please do your own due diligence before making any investment. Blockmanity won't be responsible for any loss of funds.
The post Ethereum Foundation Initiative Exposes 100 North Korean IT Workers in Web3 Ecosystem appeared first on Blockmanity.
