The Ethereum Foundation has released the closing report of its ETH Rangers security initiative, revealing that approximately 100 suspected North Korean (DPRK) IT operatives were identified within Web3 organizations.
The program, launched in late 2024 in partnership with Secureum, The Red Guild, and Security Alliance (SEAL), focused on strengthening blockchain security, detecting vulnerabilities, and responding to threats across the Ethereum ecosystem.
According to TradingView, ETH is currently trading at $2,349.93 . The daily trading volume of the token is around 20.92 billion, and the market cap has exceeded 284.17 billion.
Also Read: Ethereum Rebounds From Key Support as Resistance Near $3,035 Caps Upside
The ETH Rangers initiative reported identifying almost 100 suspected DPRK-linked IT workers operating across multiple Web3 teams. Researchers engaged directly with dozens of blockchain projects to investigate suspicious employment patterns and possible infiltration attempts.
Investigators identified these individuals working under false identities within development teams and blockchain companies. Some projects were formally notified after the suspected actors were flagged, allowing organizations to review their internal security protocols.
The findings underscore insider-based security risks within the Web3 sector, where attackers may gain access through employment rather than direct system exploitation. Industry reports indicate that North Korea-linked IT worker networks have increasingly targeted blockchain organizations by infiltrating companies using fraudulent credentials and remote work arrangements.
These developments reinforced concerns about long-term insider threats across decentralized finance and blockchain infrastructure.
The identification of suspected DPRK-linked operatives highlighted broader security challenges facing the Web3 industry. Analysts have reported that North Korea-linked groups have been active in blockchain ecosystems for years, sometimes contributing to development projects before participating in malicious activities.
Security research indicates that infiltration strategies may involve long-term positioning within organizations, followed by targeted exploitation or data access. Some investigations have linked DPRK-affiliated actors to large-scale cryptocurrency thefts and coordinated cyber operations across multiple platforms.
Participants documented over 785 vulnerabilities, including client-side exploits and software weaknesses discovered across blockchain applications. The program also handled more than 36 active security incidents, demonstrating the scale of threats facing decentralized networks.
The program funded independent researchers who conducted audits, vulnerability testing, and threat monitoring activities across Ethereum-based projects. These combined efforts reflected a structured approach to identifying risks and strengthening blockchain resilience.
Also Read: Bitcoin (BTC) and Ethereum (ETH) Test Critical Levels as Whale Opens High-Leverage Longs
