[ad_1]
A North Korea-aligned exercise cluster tracked by ESET as DeceptiveDevelopment drains victims’ crypto wallets and steals their login particulars from net browsers and password managers
20 Feb 2025
ESET researchers have noticed a malicious marketing campaign the place North Korea-aligned risk actors, posing as headhunters, goal freelance software program builders with info-stealing malware.
The actions – named DeceptiveDevelopment and going again to at the very least November 2023 – contain spearphishing messages which are being distributed on job-hunting and freelancing websites and ask the targets to take a coding check, with the recordsdata crucial for the duty normally hosted on personal repositories akin to GitHub. These recordsdata are laden with malware, nonetheless, which in the end lets the attackers steal the victims’ login particulars and drain their cryptocurrency wallets.
What else is there to know concerning the marketing campaign’s techniques, methods, and procedures? Study from ESET Chief Safety Evangelist Tony Anscombe within the video and ensure to learn the total blogpost.
Join with us on Fb, X, LinkedIn and Instagram.
[ad_2]