Home > Security > Security News

LinkedIn Crypto Job Seekers Could be Members of North Korean Cybercriminals

Published
Written by:
Vishwa Pandagle
Vishwa Pandagle
Cybersecurity Staff Editor
North Korean Cybercriminals create fake profiles on LinkedIn

North Korean threat actors are targeting researchers for unearthing their scams. This time, it is the DPRK against cybersecurity researchers regularly posting updates about their fraudulent profiles on LinkedIn.

Cybersecurity Analyst Dominic Alvieri shared several fraudulent LinkedIn accounts created with a focus on recruiters from the cryptocurrency and IT industry.  

The profiles were complete with hundreds of followers, connections, profile pictures, professional details, and open-to-work status. They used distinct list locations from Nigeria to Argentina, boosting credibility among visitors.  

Screenshots of fraudulent LinkedIn profiles
Screenshots of fraudulent LinkedIn profiles | Source: Dominic Alvieri on X 

The profiles were crafted to attract recruiters looking for full-stack engineers, blockchain developers, IT project managers, and the like, so they gain access to similar infrastructure upon selection.

Fraudulent recruiter profile on LinkedIn
Fraudulent recruiter profile on LinkedIn | Source: Dominic Alveiri on X

In April, Alvrieri shared screenshots of a North Korean recruiter profile on LinkedIn posing to be from Colombia, whose name was Juan Diego Suarez, and had 62 connections. Juan posed as a ‘Human Resources Recruiter at Blocknovas.’

FBI banner marking the seizure of the Blocknovas LLC website
FBI banner marking the seizure of the Blocknovas LLC website | Source: Blocknovas website

Although Blocknovas was seized by the FBI in a joint effort against North Korean cyber actors for deceiving with fake job postings and distributing malware, new profiles still surface on LinkedIn.

The FBI released guidance detailing how the DPRK targets the crypto industry. These account holders often urge moving the communication away to another platform, so other account details get exposed. 

They offer investment from prominent companies and promote the use of non-standard software for video conferencing.

Alvieri’s LinkedIn account restricted
Alvieri’s LinkedIn account restricted | Source: Dominic Alvieri on X

As if this were not enough, threat actors targeted the LinkedIn account of Alvieri.  Alvieri wrote that his account was hacked while his access had been temporarily restricted all week.

Add a Comment
Related
Massive Pygmalion Dark Web Shop Seizure by German Officials Exposing Drug Deals and Onion Addresses
Yemen Ransomware Operator deploying the Black Kingdom ransomware
Black Kingdom Ransomware Developer, a Yemeni Resident Charged by the U.S. DOJ
Take it Down Act for DeepFake NCII
‘Take It Down Act’ Moves Closer to Becoming Law Amid Free Speech Suppression Concerns
airline_onboard
Hackers Impersonate TAP Air Portugal in Phishing Emails Offering Canceled Flights Compensation
hospital
Ascension Health Data Breach Exposes Patient Information for the Second Time in a Year
Enhanced StealC Version 2.0 Targets Crypto Wallets, VPNs, Gaming Apps, Browsers
Most Popular
Massive Pygmalion Dark Web Shop Seizure by German Officials Exposing Drug Deals and Onion Addresses
movies 2025
2025 Movie Release Dates: Calendar for Theatrical and Streaming Dates
TV shows February 2025
2025 TV Premiere Dates: New & Returning TV Series Calendar
The Four Seasons
The Four Seasons: Where was the Netflix show Filmed?
Yemen Ransomware Operator deploying the Black Kingdom ransomware
Black Kingdom Ransomware Developer, a Yemeni Resident Charged by the U.S. DOJ
Rust
Rust Movie Ending Explained: Harland's Redemption, Lucas's Escape & a Final Tribute to Halyna Hutchins
Massive Pygmalion Dark Web Shop Seizure by German Officials Exposing Drug Deals and Onion Addresses
2025 Movie Release Dates: Calendar for Theatrical and Streaming Dates
2025 TV Premiere Dates: New & Returning TV Series Calendar
The Four Seasons: Where was the Netflix show Filmed?
Black Kingdom Ransomware Developer, a Yemeni Resident Charged by the U.S. DOJ
Rust Movie Ending Explained: Harland's Redemption, Lucas's Escape & a Final Tribute to Halyna Hutchins

Most Popular
Massive Pygmalion Dark Web Shop Seizure by German Officials Exposing Drug Deals and Onion Addresses
movies 2025
2025 Movie Release Dates: Calendar for Theatrical and Streaming Dates
TV shows February 2025
2025 TV Premiere Dates: New & Returning TV Series Calendar
The Four Seasons
The Four Seasons: Where was the Netflix show Filmed?
Yemen Ransomware Operator deploying the Black Kingdom ransomware
Black Kingdom Ransomware Developer, a Yemeni Resident Charged by the U.S. DOJ
Rust
Rust Movie Ending Explained: Harland's Redemption, Lucas's Escape & a Final Tribute to Halyna Hutchins
Massive Pygmalion Dark Web Shop Seizure by German Officials Exposing Drug Deals and Onion Addresses
2025 Movie Release Dates: Calendar for Theatrical and Streaming Dates
2025 TV Premiere Dates: New & Returning TV Series Calendar
The Four Seasons: Where was the Netflix show Filmed?
Black Kingdom Ransomware Developer, a Yemeni Resident Charged by the U.S. DOJ
Rust Movie Ending Explained: Harland's Redemption, Lucas's Escape & a Final Tribute to Halyna Hutchins

TechNadu keeps you informed with the latest in cybersecurity, VPNs, streaming, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2025 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: