North Korean hackers have targeted over 230 individuals through fake cryptocurrency job interviews, employing sophisticated social engineering techniques. These attacks include impersonating finance companies and exploiting advanced malware like ClickFix and RemotePE. #ContagiousInterview #NorthKoreanHackers
Keypoints
- North Korean hackers targeted at least 230 victims in cryptocurrency-related social engineering attacks in early 2025.
- The threat actors used fake websites and impersonated finance companies like Robinhood and eToro to conduct the scams.
- Victims were invited to fake interviews and then directed to malware-infected sites using the ClickFix technique.
- The attackers monitored threat intelligence platforms and coordinated their activities using Slack for infrastructure planning.
- Additional social engineering campaigns involved posing as finance employees on Telegram and exploiting a Chrome zero-day vulnerability.
Read More: https://www.securityweek.com/north-korean-hackers-targeted-hundreds-in-fake-job-interview-attacks/