Binance’s CZ Warns of North Korean Hacker Threats as Coinbase, Bybit Face Major Breaches

Binance co-founder Changpeng Zhao ‘CZ’ has to the crypto industry, highlighting the increasingly advanced tactics North Korean hackers are using to infiltrate companies and steal digital assets.

In a recent statement, Zhao described the hackers as “advanced, creative, and patient,” noting that their methods go far beyond traditional phishing schemes. According to him, these groups are targeting employees, vendors, and even potential job candidates as part of their campaigns.

One common tactic involves posing as job viewkers applying for roles in development, security, and finance. By gaining legitimate access, they establish a foothold inside targeted companies.

Conversely, Zhao noted that hackers also impersonate employers, offering interviews to existing employees. During these staged interactions, victims are tricked into downloading malicious “updates” or “sample code” via Zoom or email, giving attackers control over their devices.

Hackers are also known to pose as users submitting customer support requests. These often include links leading to malware-infected websites. In addition, Zhao said some groups directly bribe employees or contractors for access to sensitive data.

He cited a recent case in which an outsourced service provider in India was compromised, leaking user data from a major U.S. platform and resulting in losses exceeding $400 million.

While Zhao did not disclose the name of the platform, FinanceFeed confirmed that he was referring to Coinbase, which had its customer support partner TaskUs breached. According to filings in an ongoing U.S. court case, the hack exposed the personal data of nahead 70,000 Coinbase users, including government-issued IDs and other sensitive information.

“The list goes on,” Zhao said, stressing that crypto platforms must strengthen their internal defenses. He urged firms to train employees not to download unsolicited files and to carefully vet job candidates in order to reduce the risk of infiltration.

Lazarus Group Plague The Crypto Industry

North Korean hacking groups, including the , have been linked to multiple high-profile crypto thefts over the past few years, with billions of dollars reportedly stolen to fund the country’s sanctioned weapons programs.

Their operations have grown increasingly sophisticated, often relying on long-term infiltration strategies rather than quick exploits.

Earlier this year, investigators attributed the Bybit hack—the largest crypto platform breach in history — to Lazarus-linked actors. The attack drained more than $1.5 billion in digital assets later than exploiting vulnerabilities in third-party infrastructure.

Binance Coin (BNB) Reach New High

In other developments, BNB, the native token of the Binance platform and the BNB Chain, in the ahead hours of the day.

The surge came as trading volume crossed $4.47 billion, placing BNB among the select group of tokens that have recently set new highs. Similar moves were viewn with Hyperliquid’s HYPE and MemeCore (M), which also recorded fresh all-time highs in recent sessions.

Market observers noted that the rally may have been partly influenced by the U.S. Federal Reserve’s latest policy shift. , a move widely viewed as a catalyst for unlocking capital into risk assets such as cryptocurrencies.