Zerion User Funds Safe After Employee Loses $100K

Zerion confirms user funds are safe after an employee lost approximately $100,000 in a social engineering attack. The primary keyword zerion user funds safe employee is a concern for many.

Zerion's Response to the Attack

Zerion responded quickly to the incident, locking the deployment infrastructure and rotating all exposed credentials and private keys. The company worked with teams at Blockaid, ZeroShadow, and ChainPatrol to identify and request the removal of the attacker's wallets and accounts.

Details of the Social Engineering Attack

The attacker, linked to a North Korean threat actor, accessed active sessions, credentials, and private keys from hot wallets used for internal testing. $100,000 was stolen, but no user-related funds were compromised. Zerion's wallet is fully self-custodial, and no team member has access to users' private keys or seed phrases.

Attack Vector and Methodology

The Security Alliance identified 164 malicious websites connected to group UNC1069, active since February 2026 and targeting crypto and Web3 firms. The group uses fake Zoom and Microsoft Teams calls, as well as software attacks to steal funds and sensitive data.

Key Takeaways

• Zerion's user funds are safe despite the social engineering attack.
• The attacker stole approximately $100,000 from internal hot wallets.
• Zerion's wallet is fully self-custodial, ensuring user funds' security.
• The Security Alliance identified 164 malicious websites linked to the attack.

Frequently Asked Questions

Are Zerion user funds at risk after the social engineering attack?

No, Zerion confirms that user funds are safe and were not compromised in the attack.

What measures did Zerion take to respond to the attack?

Zerion locked the deployment infrastructure, rotated all exposed credentials and private keys, and worked with external teams to identify and remove the attacker's wallets and accounts.