The North Korea–linked Lazarus group has targeted job seekers in the blockchain and cryptocurrency space who use the LinkedIn service. Reports from cybersecurity solutions provider F-Secure say this.
Several specialists received job offers containing a malicious file. Researchers determined that the malware was created in 2019. Its code is available on the popular cybersecurity resource VirusTotal.
“The primary objective of the virus was to gain access for the purpose of stealing cryptocurrencies,” the report said.
F-Secure noted that Lazarus operates in the interests of the North Korean government. Experts believe that the targets of their attacks will also include organisations outside the cryptocurrency industry.
In mid-August the stated that 6,000 hackers are operating against North Korea. Some of them belong to the Lazarus group, whose tasks include creating “social chaos”.
In July, Kaspersky Lab experts noted that in 2020 Lazarus hackers intensified targeted attacks on Russian crypto-traders.
Subscribe to ForkLog news on VK!