Summary: A phishing campaign has been uncovered that impersonates CrowdStrike’s recruitment branding to distribute a cryptominer disguised as a “CRM application.” Victims are tricked into downloading malware that exploits their system resources for cryptocurrency mining.
Threat Actor: Unknown | unknown
Victim: Job seekers | job seekers
Key Point :
- The phishing email mimics CrowdStrikeβs recruitment process to lure victims.
- Victims are directed to a malicious site to download a fake CRM application.
- The downloaded executable is a downloader for the XMRig cryptominer.
- Malware employs multiple evasion techniques to avoid detection.
- XMRig is executed, utilizing the victim’s system for cryptocurrency mining.
Phishing campaigns continue to evolve, exploiting trusted brands like CrowdStrike to deceive unsuspecting individuals. By remaining vigilant and employing robust security measures, both job seekers and organizations can mitigate the risks of such sophisticated scams.
Source: https://securityonline.info/recruitment-scam-targets-job-seekers-with-fake-crowdstrike-branding/