You can never really trust people online, especially if you don’t know them and they’re offering a deal that sounds too good to be true.
I came across a thread (below), would this be considered part of their job, or does it fall under hacking?
Phantom wallet phishing attack
Topic: New Lazarus campaign target crypto wallets (Read 38 times)
Yes, this is the new wave of cyber attacks, Rustdoor Malware - targets crypto job seekers, social engineering attacks. I have reported the same modus by this state sponsored criminals.
Good for you mate that you didn't fall for this trick as initially, you really don't suspect anything is wrong until the last minute that you lost your crypto to this criminals. And it's really a huge warning for us who are looking for crypto related jobs or any jobs for that matter.
Thank you for the warning. I've been contacted many times for various crypto jobs, similar like this. Luckily, i just ignored them all as i don't have time.
But this insight shows that i might have dodged a bullet, which is nice for me
But this insight shows that i might have dodged a bullet, which is nice for me
Good for you mate that you didn't fall for this trick as initially, you really don't suspect anything is wrong until the last minute that you lost your crypto to this criminals. And it's really a huge warning for us who are looking for crypto related jobs or any jobs for that matter.
Thank you for the warning. I've been contacted many times for various crypto jobs, similar like this. Luckily, i just ignored them all as i don't have time.
But this insight shows that i might have dodged a bullet, which is nice for me
But this insight shows that i might have dodged a bullet, which is nice for me
I think LinkedIn job offers is now the haven for cyber criminals, from state sponsored like the Lazarus to anyone that involved themselves in hacking or scamming.
And now they have urged everyone to report if they see potential scams.
https://www.linkedin.com/help/linkedin/answer/a1336387
Obviously, it's a very dangerous world that we live, as we are becoming a target and criminals are being bold with their attacks and always looking for new attack vectors. So we should be self-aware and really be vigilant more than ever.
And now they have urged everyone to report if they see potential scams.
https://www.linkedin.com/help/linkedin/answer/a1336387
Obviously, it's a very dangerous world that we live, as we are becoming a target and criminals are being bold with their attacks and always looking for new attack vectors. So we should be self-aware and really be vigilant more than ever.
We all know who the Lazarus group is, they are state sponsored hackers by the North Korean government. And in the last years or so, they are really very active on their hacking activities target crypto exchanges and others. And it's my impression that the money they generated is what keeps them in survival because of the trade embargo by US and the West.
So in this case, as this is the new way for some cyber criminals to victimized, the group takes advantage of LinkedIn. And so they will contact someone with a enticing job opportunity like the below,
and so with other job opportunities, the employer will request for you CV. And then after that, the criminals will share a repository, and then a documents with questions. But in order to answer you need to execute the demo.
However, the demo has a lot of payloads, and it has cross platform info stealer that targetse the following crypto wallets,
And after that, it will install a phyton module,
So it's really very complex infectious change, including crypto miners.
Hopefully, if someone here might might be contacted for a job, just be careful though, you really don't know who you are talking to and just be careful of our crypto wallets and not to exposed them.
https://www.bitdefender.com/en-us/blog/labs/lazarus-group-targets-organizations-with-sophisticated-linkedin-recruiting-scam
So in this case, as this is the new way for some cyber criminals to victimized, the group takes advantage of LinkedIn. And so they will contact someone with a enticing job opportunity like the below,
and so with other job opportunities, the employer will request for you CV. And then after that, the criminals will share a repository, and then a documents with questions. But in order to answer you need to execute the demo.
However, the demo has a lot of payloads, and it has cross platform info stealer that targetse the following crypto wallets,
And after that, it will install a phyton module,
Code:
mlip.py
pay.py
bow.py
pay.py
bow.py
So it's really very complex infectious change, including crypto miners.
Hopefully, if someone here might might be contacted for a job, just be careful though, you really don't know who you are talking to and just be careful of our crypto wallets and not to exposed them.
https://www.bitdefender.com/en-us/blog/labs/lazarus-group-targets-organizations-with-sophisticated-linkedin-recruiting-scam
Jump to: