America’s cybersecurity company Fireblocks has announced that it successfully thwarted a network scam related to North Korea that involved impersonating a job recruitment process, targeting digital assets for fraudulent activities.
According to Fireblocks, hackers utilized fake job interviews to deceive developers, gaining access to encrypted infrastructure.
The scam weaponized a fake recruitment process to implant malicious software on the computers of those applying for positions in cryptocurrency development. When applicants executed seemingly routine installation procedures, they unknowingly installed malware that exposed their wallets, private keys, and systems to hackers.
The company, specializing in digital asset custody and blockchain security, mentioned that hackers were able to closely mimic Fireblocks’ legitimate recruitment process, posing as recruiters conducting interviews via video conferencing platform Google Meet and sharing tasks through the cloud platform GitHub.
CEO of Fireblocks, Michael Shaulov, informed CNBC that this hacker group targeted individuals based on engineers’ personal information on the social media platform LinkedIn to identify those with access to encrypted infrastructure permissions.
Shaulov revealed that Fireblocks discovered around ten fake accounts that continuously changed the branding of their alleged companies. The company believes that this scam has been quite active in recent years.
He added that Fireblocks collaborated with LinkedIn and law enforcement agencies to remove these fake accounts.
Shaulov also pointed out that hackers, especially those linked to North Korea, have been rapidly evolving, with advancements in artificial intelligence making it almost impossible for people to detect such attacks from hackers.
He stated, “Clearly, due to artificial intelligence, attackers have become more sophisticated and harder to detect.”
(This article is based on a CNBC report)