Humanity Protocol’s $36M loss tied to suspected North Korean hackers: Quantstamp
A phishing email with a malicious attachment appears to have enabled North Korea-linked attackers to steal $36 million in Humanity (H) tokens from Humanity Protocol. Quantstamp said a compromised employee laptop was the entry point, after the attachment disguised itself as a Bithumb token lockup schedule update and installed malware with remote access. The malware was reportedly signed with a South Korean Hancom digital certificate, a pattern associated with DPRK intrusions, and it allowed theft of MetaMask wallet credentials and private keys from director Chong Yee Wai. The incident adds to a wider pattern of major crypto thefts tied to North Korea, which CertiK says has been responsible for a large share of recent crypto losses and has industrialized hacking as a revenue source.
