Using LinkedIn for phishing attacks, they pose as recruiters and investors to trick employees into downloading malware that allows them to steal valuable information and assets.
SlowMist’s investigation revealed that the hackers posed as Fenbushi Capital partners on LinkedIn to attract cryptocurrency industry professionals. They offered fake jobs or investment opportunities to gain access to victims’ systems. Their strategy was to send coding requests as part of the recruitment process. The seemingly innocuous files contained malware that, when run, installed a Trojan program that allowed remote access to the victim’s computer. This method allowed Lazarus to steal confidential information and assets without the victim’s knowledge.
Moreover, this is not the first time hackers have used LinkedIn for targeted attacks. In December 2023, they impersonated a fake Meta recruiter. I
submitted by /u/MemenaSerena
[link] [comments]