North Korean workers have infiltrated DeFi projects for seven years, security researcher warns
A cybersecurity analyst revealed that North Korean workers have been embedded in DeFi protocols since around 2019, during DeFi summer when the sector first exploded in popularity. These workers allegedly worked on numerous protocols over the years, raising security concerns. The infiltration appears to be part of broader efforts to access valuable systems and potentially extract cryptocurrency or sensitive information. DeFi projects typically have limited vetting and operate pseudonymously, making it easier for bad actors to gain access. This discovery highlights a security vulnerability in decentralized finance where project teams may not thoroughly verify contributor backgrounds. The seven-year timeline shows this has been an ongoing, persistent threat.
Why it matters
This is important because DeFi is often pitched as trustless and decentralized, but people still matter. Security breaches and bad actors can affect your funds even in decentralized systems. When considering which DeFi projects to trust with your money, this story shows you should care about project security practices and team vetting.
