According to @zachxbt, the on-chain address 0x78e1 is closely tied to the USD 680,000 Favrr exploit from June 2025, with the project’s CTO and other developers identified as DPRK IT workers using fraudulent documents, source: ZachXBT on X, Aug 13, 2025. According to @zachxbt, additional DPRK IT workers were identified at projects linked to the 0x78e1 address, heightening sanctions and compliance risk for counterparties interacting with related wallets, source: ZachXBT on X, Aug 13, 2025. According to @zachxbt, traders should watch for movements from 0x78e1 and linked addresses to manage exposure to tainted funds and potential liquidity disruptions on affected venues, source: ZachXBT on X, Aug 13, 2025.

According to @zachxbt, projects associated with JP previously failed to conduct proper due diligence, leading to the accidental hiring of DPRK IT workers as developers. This issue remained undisclosed until highlighted by @zachxbt. The current discussion revolves around Asgardex's practice of retaining fees, raising concerns about transparency and operational integrity.

According to ZachXBT, WarPaul's team has shared their first-hand experience with DPRK IT workers with the community. This information could provide valuable insights into the tactics and strategies used by North Korean IT workers, which may have implications for cybersecurity and crypto trading.

According to ZachXBT, a team recently sought his help after discovering that $1.3M was stolen from their treasury due to malicious code. The team unknowingly hired multiple DPRK IT workers who used fake identities. ZachXBT uncovered that over 25 other crypto projects were similarly compromised.