? North Korean Hackers Target Crypto Specialists via Fake Job Interviews
North Korean hacker group Famous Chollima has developed a new remote access trojan (RAT) called PylangGhost, according to researchers at Cisco Talos.
The malware is being spread through fake job interviews targeting professionals in the crypto industry.
โ How the attack works:
- Hackers create fake websites mimicking top companies like Coinbase, Robinhood, and Uniswap.
- Fake recruiters direct candidates to these sites for โtechnical tests.โ
- Then, they ask applicants to turn on their webcam โ but to do that, they must โrun a command in the terminal.โ
- That command, in fact, installs the malware.
? What is PylangGhost?
- A Python-based remote access trojan designed for Windows systems
- A functional equivalent of the earlier GolangGhost, which targeted macOS users
Grants persistent remote access to compromised machines
โ ๏ธ Heads up: crypto professionals are a key target. If you’re asked to run terminal commands during an interview โ it might be more than just a red flag.
All content provided on this website (https://wildinwest.com/) -including attachments, links, or referenced materials โ is for informative and entertainment purposes only and should not be considered as financial advice. Third-party materials remain the property of their respective owners.