Humanity Protocol, a blockchain-based identity platform, has lost $36 million in a hack that used phishing malware. Security firm Quantstamp said the tools deployed in the breach were linked to North Korean state-sponsored actors.
The $36 Million Breach
The attackers tricked employees into downloading malware that gave them access to the company's systems. Once inside, they drained $36 million from Humanity Protocol's wallets. The company has not yet disclosed whether the stolen funds were customer assets or corporate reserves.
Phishing remains one of the most common entry points for crypto heists. In this case, the malware was designed to evade detection long enough to move large sums.
North Korean Attribution
Quantstamp, a blockchain security auditor, analyzed the hacking tools used in the incident. The firm concluded that the code and infrastructure matched those previously tied to North Korean cyber units. These groups have a long track record of targeting crypto firms to fund the regime.
The attribution is based on technical signatures in the malware, not on direct intelligence. Still, it adds to a growing list of crypto thefts linked to Pyongyang.
Humanity Protocol has not released a public statement about the hack or any recovery plans. The company's investors and users are waiting for answers. The full impact on the platform's operations remains unclear.
Security experts say the breach highlights the persistent threat of state-backed phishing campaigns. For now, the $36 million is likely gone, and the question is whether Humanity Protocol can rebuild trust.
