Tag: invisibleferret
2 attack reports | 0 vulnerabilities
Attack reports
North Korean remote workers landing jobs in the West
North Korean threat actors are utilizing Contagious Interview and WageMole campaigns to secure remote employment in Western countries, evading financial sanctions. The Contagious Interview campaign has been updated with improved script obfuscation and multi-platform support, targeting over 100 devi…
Downloadable IOCs 56
Tenacious Pungsan: A DPRK threat actor linked to Contagious Interview
Datadog Security Research discovered three malicious npm packages: passports-js, bcrypts-js, and blockscan-api, containing BeaverTail malware associated with North Korean threat actors. The packages, downloaded 323 times, targeted job-seekers in the US tech industry through a campaign named Contagi…
Downloadable IOCs 1