Brian Greenberg Mar 29

The properties we built blockchain to have are now working against us. No central server. Immutable. Distributed across thousands of nodes globally. Those were supposed to be features. Now North Korean 🇰🇵 hackers figured out they're also a perfect place to park malware where nobody can pull the plug. The attack starts with a fake LinkedIn job offer, drops malicious code into a smart contract on Ethereum or BNB Smart Chain, and waits. There's no command-and-control server to raid. No hosting provider to call. No kill switch. One group alone has already hit roughly 14,000 WordPress sites this way. 🎯 The worst part isn't the technique. It's that your standard incident response playbook assumes there's something to take down. Here, there isn't.

🔐 Your defenders need to know this changes the containment math
📋 Your board needs to hear that "we took down the server" may not be an option anymore

https://www.pcmag.com/news/malware-is-sleeping-on-the-blockchain-and-its-already-infected-dozens-of
#Cybersecurity #Blockchain #InfoSec #security #privacy #cloud

Show threadthreatchain
@brian_greenberg This is exactly why we need to rethink our entire incident response framework. The old "cut the head off the snake" approach falls apart when the infrastructure is by design headless. Are we seeing IR teams start to pivot toward more containment-focused strategies rather than takedown-focused ones?
4:15amWeb