A report from cybersecurity firm CrowdStrike revealed that the North Korean hacking group FAMOUS CHOLLIMA was responsible for 47% of all state-sponsored cyberattacks on technology companies globally from April 2025 to March. This group utilized a sophisticated approach to target remote software developer positions, subsequently deploying malware and stealing cryptocurrency.
The surge in remote work opportunities has provided FAMOUS CHOLLIMA with an avenue to exploit, given the higher salaries offered compared to typical wages in North Korea. CrowdStrike noted the North Korean education system produces many skilled IT professionals, further facilitating these attacks.
In response to these threats, the United States, alongside 15 other unnamed nations, has initiated a campaign against the group's technology and cryptocurrency operations. Additionally, advancements in artificial intelligence are reportedly enhancing the capabilities of hackers, increasing the speed and sophistication of their attacks, which may reduce the time available for companies to detect and respond to breaches.
The upcoming public release of Anthropic's Mythos tool, which claims it can exploit vulnerabilities in major operating systems and web browsers, raises further concerns about cybersecurity. While some major tech companies had early access, Anthropic has expressed caution about its public availability due to the potential risks involved.