• CONTACT
  • MARKETCAP
Coin  Deskk
  • BOOKMARKS
  • What’s New
  • Cryptocurrency
  • Pages
    • Contact Us
    • Search Page
    • Customize Interests
    • My Bookmarks
  • Home Coin
  • Home Coin
Reading: Consensys halts releases after North Korea-linked developer gains access
Share
Coin  DeskkCoin  Deskk
Font ResizerAa
  • Home
  • Crypto
  • Market
  • Blockchain
  • Contact
Search
© 2026 Coindeskk News Network. All Rights Reserved.
What's New

Consensys halts releases after North Korea-linked developer gains access

Crypto
Last updated: July 18, 2026 5:08 pm
Crypto
Published: July 18, 2026
Share
Consensys halts releases after North Korea-linked developer gains access

Consensys has temporarily halted product releases after a North Korea-linked consultant gained access to its systems for about one month. Summary Consensys halted product releases after a North Korea-linked consultant accessed its systems for one month. An internal investigation found no stolen assets, exposed data, malicious code, or user harm. Consensys will review contractor screening as North Korean operatives increasingly target crypto firms. Drop Site News reported that the developer joined the Ethereum software company under the alias “Tyler Knapp” and used the GitHub handle “imyugioh.” Public GitHub records reviewed by the outlet showed that the consultant began contributing code on March 9 before his access ended in April. Internal messages obtained by Drop Site showed that Knapp worked on core MetaMask platform code, including sections used to connect crypto users with third-party fiat payment providers. Consensys suspended product releases during its investigation and instructed staff to avoid contact with the consultant, according to the report. Consensys general counsel Matt Corva told Drop Site that an established third-party service provider introduced Knapp to the company. Corva stressed that Consensys treated him as a consultant rather than a direct employee. “Very quickly after being introduced, we discovered the threat, followed our security protocols, immediately terminated any access and launched a comprehensive investigation that confirmed there was no misappropriation of assets or data, no malicious code deployed, and no impact to user safety and security.” Although Consensys disclosed no financial losses, Corva said in a statement that the company would reassess how it outsources engineering and development work. The firm also notified law enforcement and provided information about the incident, according to internal communications reviewed by Drop Site. Consensys found no loss of user assets Consensys’ investigation found no evidence that the consultant stole company data or digital assets, inserted harmful code, or compromised users, according to Corva. The company did not publicly explain how it established the developer’s alleged ties to the Democratic People’s Republic of Korea. Even without a confirmed loss, developer access can expose sensitive infrastructure. According to TRM Labs, developer environments have become one of the quickest paths for attackers seeking access to systems that hold private keys or approve crypto withdrawals. A six-month investigation supported by the Ethereum Foundation’s ETH Rangers Program shows that the hiring threat extends beyond Consensys. The Ketman Project identified about 100 suspected North Korean IT workers using false identities across 53 crypto and Web3 projects, according to an ETH Rangers recap published in April. Ketman investigators also traced at least three suspected groups across 11 code repositories, where projects had merged 62 pull requests before detecting the activity. The project reported that some applicants used generated profile pictures, forged identity documents and false Japanese identities to pass screening checks. North Korea remains crypto’s largest hacking threat North Korea-linked groups have repeatedly used fake identities and remote engineering jobs to gain entry to technology companies. As crypto.news reported in November, Opsek founder and Security Alliance member Pablo Sabbatella warned at Devconnect Buenos Aires that North Korean workers could be embedded in as many as one-fifth of crypto companies. Sabbatella also estimated that North Korean applicants account for roughly 30% to 40% of job applications received by crypto firms, suggesting that employment fraud is not limited to isolated cases. Crypto companies face added risk because employees and contractors can receive access to code, wallets and transaction systems. TRM Labs estimated that North Korea was responsible for 64% of the value stolen in crypto hacks during 2025, when total losses exceeded $2.7 billion. TRM Labs One attack accounted for much of the damage. The FBI attributed the February 2025 theft of about $1.5 billion from Bybit to North Korea’s TraderTraitor group, which dispersed the assets across thousands of blockchain addresses. FBI TRM Labs reported that more than 30 exchanges and decentralized finance protocols now share rapid alerts through its Beacon Network when North Korea-linked funds reach participating platforms. For Consensys, the consultant’s removal prevented any known user loss, but the incident has prompted a review of the company’s third-party hiring controls.

Nigeria Senate advances bill to regulate crypto exchanges
Cointelegraph’s traffic was destroyed by Google’s algorithm and crypto media is in trouble
Stablecore partners with Circuit, Curql on $25B credit union stablecoin initiative
Pi Network price action stalls in accumulation zone, extended range ahead?
Australia considers replacing 50% capital gains tax discount on crypto

Sign Up For Daily Newsletter

Be keep up! Get the latest breaking news delivered straight to your inbox.
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share This Article
Facebook Email Copy Link Print
Previous Article OKX Europe opens USDT escape route as MiCA restrictions tighten OKX Europe opens USDT escape route as MiCA restrictions tighten
Next Article Galaxy Digital plants its name on Texas Tech football stadium Galaxy Digital plants its name on Texas Tech football stadium

Follow US

Find US on Socials
FacebookLike
XFollow
YoutubeSubscribe
TelegramFollow
Subscribe to our newslettern

Get Newest Articles Instantly!

- Advertisement -
Ad image
Popular News
A16z Delves Deep: $70m Bet on EigenLayer Before EigenCloud Takes Off
A16z Delves Deep: $70m Bet on EigenLayer Before EigenCloud Takes Off
Shiba Inu Plunges: Will It Survive This Critical Test?
Shiba Inu Plunges: Will It Survive This Critical Test?
Solana Breaks Limits: Prepare for Unstoppable Blockchain Revolution Ahead
Solana Breaks Limits: Prepare for Unstoppable Blockchain Revolution Ahead

Follow Us on Socials

We use social media to react to breaking news, update supporters and share information

Twitter Youtube Telegram Linkedin
Coin  Deskk

We influence 20 million users and is the number one business blockchain and crypto news network on the planet.

Subscribe to our newsletter

You can be the first to find out the latest news and tips about trading, markets...

© Coindeskk News Network. All Rights Reserved.