RSS News Feed

Consensys Uncovers North Korea-Linked Developer Behind MetaMask Code


  • Consensys eliminated a DPRK-linked developer earlier than any MetaMask customers have been affected.
  • Inside investigation discovered no malicious code, stolen belongings, or uncovered consumer information.
  • Incident prompted stricter contractor screening amid rising crypto safety threats.

Consensys has confirmed that it recognized and eliminated a software program developer linked to North Korea after the person contributed to MetaMask-related code by means of a third-party service supplier. 

The corporate stated its inside investigation discovered no proof of stolen belongings, compromised consumer information, malicious code, or any influence on MetaMask customers.

Consensys Removes Developer After Inside Safety Assessment

Consensys found the safety threat after hiring a guide launched by means of an present relationship with a third-party service supplier. The developer operated beneath the alias “Tyler Knapp” and reportedly used the GitHub username “imyugioh.”

In response to a Drop Website Information report, the guide contributed to MetaMask platform code, together with crypto-to-fiat conversion options built-in with third-party cost suppliers. Public GitHub information confirmed contributions started on March 9 earlier than ending in April when Consensys revoked the developer’s entry.

The blockchain software program firm stated it instantly activated its safety procedures after figuring out the potential risk. Entry privileges have been eliminated, product releases have been quickly suspended, and a complete investigation was launched.

Consensys Common Counsel Matt Corva stated the investigation confirmed that no firm belongings or consumer information have been misappropriated. He additionally said that investigators discovered no malicious code deployed inside MetaMask‘s infrastructure and no safety dangers affecting customers.

The corporate notified legislation enforcement and shared related info associated to the incident. 

Nevertheless, Consensys didn’t disclose the way it decided the guide was linked to North Korea.

Crypto Corporations Face Rising Menace From North Korean IT Staff

The incident highlights an growing cybersecurity problem going through cryptocurrency corporations that depend on distant engineering expertise and exterior contractors.

North Korean operatives have repeatedly used false identities to acquire software program improvement positions at expertise and blockchain corporations. These roles can present entry to proprietary supply code, inside programs, and delicate improvement environments.

Consensys stated the incident demonstrated that its safety controls efficiently detected and contained a classy nation-state risk earlier than customers have been affected. 

Following the investigation, the corporate started reviewing its engineering outsourcing insurance policies to strengthen screening requirements for third-party contractors.

Safety researchers have constantly warned that crypto corporations stay engaging targets as a result of builders typically obtain entry to pockets infrastructure and transaction programs.

Blockchain intelligence agency TRM Labs has additionally reported that North Korea-linked teams proceed to dominate crypto-related theft. 

The agency estimated that such teams accounted for about 66% of cryptocurrency stolen throughout the first half of 2026, underscoring the persistent safety dangers going through the digital asset trade.





Source link