The Ethereum Foundation’s ETH Rangers security initiative has concluded, revealing that approximately 100 suspected North Korean IT workers were identified infiltrating various Web3 teams. The program, launched in late 2024, recovered over $5.8 million and documented 785 vulnerabilities while highlighting growing insider threats within the blockchain sector.
The Ethereum Foundation has released the closing report for its ETH Rangers security initiative. The program identified about 100 suspected North Korean (DPRK) IT workers operating across multiple Web3 organizations.
Launched in late 2024 with partners including Secureum and Security Alliance (SEAL), the initiative focused on strengthening blockchain security. Investigators engaged directly with dozens of projects to review suspicious employment patterns.
Researchers identified these individuals working under false identities within development teams and blockchain companies. Some projects were formally notified after the suspected actors were flagged.
The findings underscore insider-based security risks within the Web3 sector. Industry reports indicate DPRK-linked networks have increasingly targeted blockchain organizations through fraudulent credentials.
The program’s security efforts recovered over $5.8 million and documented 785 vulnerabilities. Participants also handled more than 36 active security incidents during the initiative.
One post on Twitter stated, “The Ethereum Foundation (EF), in conjunction with Secureum, The Red Guild, and the Security Alliance (SEAL), released a closing report on the ETH Rangers project.” The report highlighted rising insider threats within blockchain organizations.
According to TradingView, ETH is currently trading near $2,350. The daily trading volume of the token is around $20.9 billion.
