DTEX reports that DPRK-affiliated IT workers attempted post-termination access against a blockchain entity’s critical infrastructure. After dismissal, the workers tried to regain access to the organization’s main database and execute malicious code intended to sabotage systems, but timely privilege revocation prevented the attempt. The activity is framed against DPRK-linked APT45/Andariel sabotage history, including destructive operations against South Korean media and financial institutions and an attempted compromise of India’s Kudankulam Nuclear Power Plant. The incident matters because DPRK IT worker risk can extend beyond covert employment and revenue generation into privileged insider-style disruption when access is not rapidly removed.