Ripple to Share North Korean Threat Intelligence with Crypto Industry to Counter Long-Period Social Engineering Attacks

According to CoinDesk, Ripple announced on Monday that it will share its internal intelligence on North Korean hackers with Crypto ISAC, a threat intelligence-sharing organization for the cryptocurrency industry, to help businesses identify coordinated intrusion campaigns. This move comes amid a recent shift in attack patterns targeting the cryptocurrency sector. The April theft of $285 million from the Drift protocol was not a traditional smart-contract vulnerability exploit; instead, North Korean hackers spent months building relationships with Drift contributors and installing malware on their devices before stealing private keys. Ripple stated: “The strongest crypto security posture is a shared one. A threat actor rejected by one company after background screening may submit resumes to three other companies the same week. Without shared intelligence, each company starts from scratch.”