On April 2, according to Cointelegraph, the latest report from Google's Threat Intelligence Group (GTIG) shows that IT technicians linked to North Korea are expanding their penetration targets to blockchain companies outside the United States. With the tightening of regulatory scrutiny in the United States, these technical spies have infiltrated the British cryptocurrency project. The report pointed out that although the United States remains the main target, the increasingly stringent employment review has forced North Korean IT personnel to turn to non-US companies for employment. These personnel build a global operating network through fake identities, and their penetration range covers traditional network development and blockchain applications such as Solana and Anchor smart contracts.