Consensys unknowingly outsourced developer work to North Korean

Summary

Consensys unknowingly brought on a software developer using the alias Tyler Knapp, later linked to North Korea, and gave that person access to some systems for about a month. The developer was introduced through a third-party service provider and worked as a consultant, not an employee. After discovering the risk, Consensys cut access, paused product releases, and investigated. The company said it found no stolen assets or data, no malicious code, and no impact to users. The case fits a broader North Korean tactic of using fake job applications and employment offers to gain access to crypto firms’ code and systems. Consensys said it will review how it outsources engineering and development work.