North Korean threat group Konni (Opal Sleet/TA406) has intensified its cyber-attacks against blockchain developers and engineers, deploying AI-generated PowerShell malware, according to BleepingComputer. Leveraging artificial intelligence, Konni’s operations now feature rapidly mutating phishing lures and malicious scripts, making detection harder and targeting privileged users with access to sensitive digital currency assets.
These AI-driven attacks seamlessly blend convincing social engineering techniques with evolving malware, outpacing static defence methods. Security teams should prioritise vigilant monitoring for unusual PowerShell activity and educate all blockchain staff on the risks of AI-powered threats. In this new AI-driven threat landscape, updated endpoint protection and scepticism toward unsolicited code or documents are crucial for defence.
Konni Hackers Target Blockchain Engineers with AI-Generated PowerShell Malware
