CertiK 报告:朝鲜黑客造成 2025 年约 60% 数字资产失窃,攻击模式转向“线下渗透”
ChainCatcher 消息,Web3 安全公司 CertiK 发布《Skynet 朝鲜加密威胁报告》。数据显示,自 2016 年至今,朝鲜黑客组织已累计掠夺约 67.5 亿美元数字资产。仅 2025 年,其制造的盗窃案损失便高达 20.6 亿美元,占全球加密行业全年总损失的近 60%(其中包括 15 亿美元的 Bybit 被盗案)。截至 2026 年初,这一威胁趋势仍在延续,其造成的损失占比约为 55%。
报告强调,朝鲜黑客的攻击模式已发生根本性转变,正从单纯的代码漏洞利用,升级为结合社会工程学、深层供应链攻击及“物理渗透”的国家级攻击体系。在近期的 Drift 协议事件中,攻击者甚至耗时半年潜伏于线下行业会议,通过真实资金与人际交往建立信任后实施攻击。
CertiK 安全专家警告,面对此级别的系统性攻击,单纯的技术防线已显薄弱。加密机构亟需全面落实“零信任”招聘模式,加固第三方供应链,设置资金熔断机制,并联合专业安全机构构建覆盖代码审计、全天候风险监测与链上反洗钱/KYT(了解你的交易)资金追踪的全生命周期防御体系。
Disclaimer: OKX Orbit content is provided for informational purposes only. Learn more
Replies
Related Flash News
ChainCatcher•7m agoCharles Schwab began rolling out spot crypto trading services to U.S. retail clients
ChainCatcher•1h agoCollins: I'm most worried about the inflation outlook right now
ChainCatcher•2h agoCoinbase Q1 pledged 4.5 million ETH, accounting for 12.17% of the entire Ethereum network
ChainCatcher•2h agoEthena launches a dedicated USDe marketplace on Jupiter Lend, supporting leveraged strategies and institutional participation
Odaily•2h agoArthur Hayes: Rising 10-year Treasury yields will force Trump to reach an agreement with China
ChainCatcher•3h agoAave CEO: The Clarity Act will provide key legal protections for DeFi developers
ChainCatcher•3h agoCoinbase CEO: The CLARITY bill is closer than ever to passing
ChainCatcher•3h agoStrong PPI data complicates the Fed's path to rate cuts
ChainCatcher•4h agoMorgan Stanley MSBT increased its holdings by 321 BTC, bringing its total holdings to over 3,300
ChainCatcher•4h agoThe Solana P-Token upgrade is now live on the mainnet, allowing for up to 20x faster transactions