Humanity Protocol’s $36M Hack Linked to Suspected North Korean Actors, Quantstamp Says

Quantstamp has linked the $36 million Humanity Protocol hack to suspected North Korean threat actors, citing the use of a fake Bithumb email in the attack. According to the firm, that email was a key indicator pointing toward the possible involvement of North Korea-linked hackers.

The development matters because phishing-style tactics remain a major risk across the crypto sector, especially when attackers impersonate known companies or platforms. For projects, exchanges and users, the reported use of a fraudulent Bithumb message highlights how trusted brand names can be weaponized in high-value attacks.

Humanity Protocol was reportedly hit for $36 million, making the incident a significant security event for the project. Quantstamp’s assessment does not describe the fake email as a minor detail, but as evidence that helped connect the breach to suspected state-linked activity.

The case also adds to broader concerns about the operational security of crypto teams. When attackers rely on convincing communications rather than only technical exploits, companies must treat email verification, internal approvals and incident response as core parts of their defense posture.

Quantstamp’s findings remain tied to the indicators described in the report, including the fake Bithumb email. No further claims about fund recovery, market impact or additional victims were included in the supplied source material.