coin-img-ETHETH+4.24%coin-img-BTCBTC+1.74%coin-img-SENTSENT-1.75%coin-img-SOLSOL+4.98%coin-img-XRPXRP+4.58%coin-img-SKRSKR+15.45%coin-img-USDCUSDC-0.02%coin-img-DOGEDOGE+3.32%coin-img-ETHETH+4.24%coin-img-BTCBTC+1.74%coin-img-SENTSENT-1.75%coin-img-SOLSOL+4.98%coin-img-XRPXRP+4.58%coin-img-SKRSKR+15.45%coin-img-USDCUSDC-0.02%coin-img-DOGEDOGE+3.32%coin-img-ETHETH+4.24%coin-img-BTCBTC+1.74%coin-img-SENTSENT-1.75%coin-img-SOLSOL+4.98%coin-img-XRPXRP+4.58%coin-img-SKRSKR+15.45%coin-img-USDCUSDC-0.02%coin-img-DOGEDOGE+3.32%coin-img-ETHETH+4.24%coin-img-BTCBTC+1.74%coin-img-SENTSENT-1.75%coin-img-SOLSOL+4.98%coin-img-XRPXRP+4.58%coin-img-SKRSKR+15.45%coin-img-USDCUSDC-0.02%coin-img-DOGEDOGE+3.32%
user-avatar
coinpaprika

North Korean KONNI APT Uses AI-Generated PowerShell Backdoors Against Blockchain Developers in Three Countries

On 21 January 2026, KONNI, a North Korean advanced persistent threat group, was reported to have used AI-generated PowerShell backdoors against blockchain and cryptocurrency developers in Japan, Australia, and India. The operation relied on Discord to distribute malicious ZIP archives containing a staged infection chain that established persistent access to victim systems. The campaign highlights the use of large language model-generated code in real-world attacks on crypto-focused development teams.
Selected
Disclaimer: The content above is only the author's opinion and does not represent BingX’s stance. It shall not be construed as investment advice from BingX. For details, refer to the Terms and Conditions.