Blockchain company Consensys accidentally used a software developer linked to North Korea who had access to some of its systems for a month.
First reported on Friday by Drop Site, Consensys earlier this year took on a software developer under the alias Tyler Knapp who was later discovered to have ties to the Democratic People’s Republic of Korea, or North Korea. The move caused the company to temporarily suspend product releases and conduct an investigation into the matter
“‘Knapp’ was introduced to us through an existing relationship with a reputable third-party service provider and collaborated with Consensys as a consultant,” Consensys general counsel Matt Corva stold Cointelegraph. “He was never hired as a Consensys employee. Very quickly after being introduced, we discovered the threat, followed our security protocols, immediately terminated any access and launched a comprehensive investigation that confirmed there was no misappropriation of assets or data, no malicious code deployed, and no impact to user safety and security.”
The incident was one of the latest involving North Korean hacking groups targeting digital asset companies by sending fake employment offers to developers and applying for jobs that would allow them to access code. Corva said Consensys will reevaluate its practices for outsourcing engineering and development work.