Summary:
-
Sneaky Job Interviews
North Korea’s Lazarus Group has upped their game, embedding malware in fake Python coding tests. Developers looking for jobs at firms like Capital One were tricked into downloading malicious software disguised as coding assignments. -
Malware in Disguise
These malicious packages were hidden in popular repositories like npm and PyPI, using Base64 encoding to conceal their true nature. Once downloaded, they established contact with a command-and-control server to execute remote commands. -
Urgency and Deception
The attackers created a sense of urgency, pressuring job seekers to complete coding tasks quickly, making it more likely they would run the malicious code without proper security checks.
Read more at: SC Magazine
!