North Korean APT Hackers Pose as Companies to Spread Malware to Job Seekers

Silent Push Threat Analysts have uncovered a chilling new cyberattack campaign orchestrated by the North Korean Advanced Persistent Threat (APT) group known as Contagious Interview, also referred to as Famous Chollima, a subgroup of the notorious Lazarus group.

This state-sponsored entity has been implicated in numerous sophisticated cyber-espionage efforts targeting global industries, with a particular focus on the cryptocurrency sector.

Their latest operation involves masquerading as legitimate cryptocurrency consulting firms BlockNovas LLC, Angeloper Agency, and SoftGlide LLC to lure unsuspecting job seekers into a malicious trap.

By exploiting the trust associated with job applications, these threat actors distribute malware through deceptive “interview lures,” aiming to compromise personal and financial data.

Sophisticated Social Engineering Targets Cryptocurrency Industry

The technical prowess of this campaign is evident in the deployment of three distinct malware strains BeaverTail, InvisibleFerret, and OtterCookie each tailored for information theft and further payload delivery across Windows, Linux, and macOS ...