Security researchers targeted with new malware via job offers on LinkedIn


Three new, specialised malware families are being spread by a suspected North Korean hacker cell by posing as job offers for security researchers and media groups in the U.S. and Europe. Mandiant, which has been monitoring this specific effort since June 2022, claims that the activity coincides with “Operation Dream Job,” which is attributed to the Lazarus group of North Koreans.

The attackers lure their targets into a WhatsApp conversation via social engineering, at which point they download the malicious payload “PlankWalk,” a C++ backdoor that allows them to infiltrate the target’s business environment.

Read More…