Bleepingcomputer
Konni Hackers Target Blockchain Engineers with AI Malware
First seen 24 Jan 2026, 20:38 UTC
•



+2
•85% similarity
•37.7
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
The North Korean hacker group Konni is utilizing AI-generated PowerShell malware to target developers and engineers in the blockchain sector. This campaign is linked to APT37 and Kimsuky activity clusters, with Konni having been active since at least 2014 and previously targeting organizations in South Korea, Russia, Ukraine, and various European countries.
ThreatCluster AI