Konni Hackers Target Blockchain Engineers with AI Malware

Konni Hackers Target Blockchain Engineers with AI Malware

First seen 24 Jan 2026, 20:38 UTC Research.CheckpointBleepingcomputerRescanaHeise.DeScworld+2 85% similarity 37.7

Article Content

Browse articles
ThreatCluster

The North Korean hacker group Konni is utilizing AI-generated PowerShell malware to target developers and engineers in the blockchain sector. This campaign is linked to APT37 and Kimsuky activity clusters, with Konni having been active since at least 2014 and previously targeting organizations in South Korea, Russia, Ukraine, and various European countries.

ThreatCluster AI

Community

Browse all →