FS-ISAC: North Korean criminals using new fraud technique

North Korean threat actors are leveraging a new technique to get victims to click on malicious links, the Financial Services Information Sharing and Analysis Center said in its latest weekly risk summary.

November 03, 2025 / By ICBA

Details: FS-ISAC said “EtherHiding” is a new technique in which threat actors pose as recruiters or employees from financial institutions, most often digital asset firms, for malicious purposes. Cybercriminals leverage the technique to trick targets into clicking on malicious links such as a link in a fake error message to “fix” a supposed computer problem.

ICBA Resources: The FS-ISAC publication and other resources are available on ICBA's Cyber and Data Security Resource Center.

NewsWatch Today Contacts

Martin Carr

Manager, Communications

Thomas Warren

Vice President, Managing Editor

Join ICBA Community

Interested in discussing this and other topics? Network with and learn from your peers with the app designed for community bankers.

Join the community Example Text

Bank Secrecy Act and Enforcement

Credit Union Tax Exemption

Fraud and Scams

Community Banker Representation

Online Training Center

All Training & Resources

Operational Risk

Solutions Directory

Chat with ICBA Community

Contact Us

Solutions Directory

Bank Locator

About Us

About Community Banking

FS-ISAC: North Korean criminals using new fraud technique

NewsWatch Today Contacts

Join ICBA Community

Related Articles

Fighting holiday fraud through customer awareness

Lies Can’t Disguise Fraud: Community Banks Face Rising First-Party Fraud Losses

Why Fraud Alerts Matter—and How to Get Customers to Respond Accurately

ICBA raises profile of payments fraud at interagency commission meeting

Subscribe Today