PANews reported on January 16 that according to research by the STRIKE team, the North Korean hacker group Lazarus Group recently launched "Operation 99", which lured Web3 and cryptocurrency developers on platforms such as LinkedIn by disguising as recruiters, inducing them to clone the GitLab code base containing malware. The attack used modular malware to steal high-value data such as source code, API keys, and crypto wallet private keys.

It is reported that Lazarus Group stole $1.34 billion in crypto assets through similar attacks last year.