Key facts
- Blockchain company Consensys unknowingly used a software developer linked to North Korea.
- The developer had access to some of Consensys's systems for approximately one month.
- Consensys discovered the link and immediately terminated the developer's access.
- An investigation found no misappropriation of assets or data, nor malicious code deployment.
- Consensys plans to reassess its procedures for outsourcing engineering and development.
Blockchain firm Consensys has revealed that it unknowingly engaged a software developer with ties to North Korea for approximately one month. The developer, operating under the alias Tyler Knapp, was introduced through a third-party service provider. Upon discovering the connection, Consensys immediately suspended product releases, terminated the developer's access, and launched a comprehensive investigation.
Matt Corva, Consensys's general counsel, stated that Knapp was a consultant and never an employee. The investigation confirmed that there was no misappropriation of assets or data, no malicious code deployed, and no impact on user safety or security. This incident is one of several recent cases where North Korean hacking groups have targeted digital asset companies by sending fake employment offers to developers to gain access to their systems and code.