Close Menu
ApeWatcher News
  • Home
  • Advertise
  • Headlines
  • Crypto
    • News
    • Bitcoin
    • Ethereum
    • Altcoin
    • View All
  • DeFi
  • NFT
  • Metaverse
  • Guides
  • Rates
  • Videos
  • Listing Platform
  • BSC
  • ETH
  • Listing Platform
  • BSC
  • ETH
What's Hot

Amalgam Founder Charged With Running ‘Sham Blockchain’, Taking $1M From Investors

May 21, 2025

Crypto Exchange Lbank Halts UAE Registrations, Plans to Retire Users in Russia, Ukraine

May 21, 2025

Bitcoin price hit a new all-time high and data shows BTC bulls aren’t done yet

May 21, 2025
X (Twitter) Telegram
  • Listing Platform
  • Home
  • BSC
  • ETH
Advertise
X (Twitter) Telegram
ApeWatcher News
  • Headlines
  • Crypto
    1. News
    2. Bitcoin
    3. Ethereum
    4. Altcoin
    5. View All

    Amalgam Founder Charged With Running ‘Sham Blockchain’, Taking $1M From Investors

    May 21, 2025

    Crypto Exchange Lbank Halts UAE Registrations, Plans to Retire Users in Russia, Ukraine

    May 21, 2025

    Bitcoin price hit a new all-time high and data shows BTC bulls aren’t done yet

    May 21, 2025

    Low Hashprice Forces Bitcoin Miners to Sell Record BTC Ahead of $109k ATH

    May 21, 2025

    Bitcoin price hit a new all-time high and data shows BTC bulls aren’t done yet

    May 21, 2025

    Bitcoin hits new highs in the absence of ‘unhealthy’ leverage use — Will the rally continue?

    May 21, 2025

    Incoming Capital Controls To Hurt Anyone Not Holding These Two Assets, According to Macro Analyst Luke Gromen

    May 21, 2025

    Bitcoin bulls grill sellers as Japan debt woes send gold past $3.3K

    May 21, 2025

    Ethereum holders back in profit as ETH price enters ‘crucial area’ for $3K breakout

    May 21, 2025

    Arthur Hayes Gives Portfolio Update, Says ‘Nasty Correction’ Could Be Approaching This Year for Crypto

    May 21, 2025

    Ethereum price gained 90% the last time this indicator turned bullish

    May 20, 2025

    Whale Holding $2,190,000,000 in Bitcoin Withdraws More BTC From Binance in Accumulation Spree: Lookonchain

    May 20, 2025

    Billionaire Justin Sun To Attend Crypto Dinner With President, Says He Is ‘Top Holder’ of Trump’s Memecoin

    May 21, 2025

    These Crypto Entities Will Be the Largest Holders of US Treasuries in the World, According to Senator Hagerty

    May 21, 2025

    ‘Hawk tuah girl’ Haliey Welch says FBI probed her ‘memecoin disaster’

    May 21, 2025

    Quantum Biopharma adds to crypto holdings

    May 19, 2025

    Amalgam Founder Charged With Running ‘Sham Blockchain’, Taking $1M From Investors

    May 21, 2025

    Crypto Exchange Lbank Halts UAE Registrations, Plans to Retire Users in Russia, Ukraine

    May 21, 2025

    Bitcoin price hit a new all-time high and data shows BTC bulls aren’t done yet

    May 21, 2025

    Low Hashprice Forces Bitcoin Miners to Sell Record BTC Ahead of $109k ATH

    May 21, 2025
  • DeFi
  • NFT
  • Metaverse
  • Guides
  • Videos

    Bitcoin Hits ATH!!!! What's NEXT???

    May 21, 2025

    Bitcoin Chart Predicts $128K! (Ethereum Set for $10,000 Breakout)

    May 21, 2025

    JPMorgan Is LYING To You About BITCOIN

    May 20, 2025

    Wall Street's Bitcoin Buying Frenzy: Is a Crypto Bull Run Coming?

    May 20, 2025

    SHOCKING Things Happening w/ Bitcoin Behind the Scenes (DON'T MISS)

    May 20, 2025
ApeWatcher News
Home » North Korean hackers set up 3 shell companies to scam crypto devs
North Korean hackers set up 3 shell companies to scam crypto devs
News

North Korean hackers set up 3 shell companies to scam crypto devs

Coin TelegraphBy Coin TelegraphApril 25, 20250 ViewsNo Comments
Share
Facebook Twitter LinkedIn Pinterest Email

A subgroup of the North Korea-linked hacker organization Lazarus set up three shell companies, two in the US, to deliver malware to unsuspecting users.

The three sham crypto consulting firms — BlockNovas, Angeloper Agency and SoftGlide — are being used by the North Korean hacker group Contagious Interview to distribute malware through fake job interviews, Silent Push Threat Analysts said in an April 24 report.

Silent Push senior threat analyst Zach Edwards said in an April 24 statement to X that two shell companies are registered as legitimate businesses in the United States.

“These websites and a huge network of accounts on hiring / recruiting websites are being used to trick people into applying for jobs,” he said.

“During the job application process an error message is displayed as someone tries to record an introduction video. The solution is an easy click fix copy and paste trick, which leads to malware if the unsuspecting developer completes the process.”

During the sham job interview, an error message is displayed, requiring the user to click, copy, and paste to fix it, which leads to the malware infection. Source: Zach Edwards

Three strains of malware — BeaverTail, InvisibleFerret and Otter Cookie — are being used according to Silent Push.

BeaverTail is malware primarily designed for information theft and to load further stages of malware. OtterCookie and InvisibleFerret mainly target sensitive information, including crypto wallet keys and clipboard data.

Silent Push analysts said in the report that hackers use GitHub, job listing’s and freelancer websites to look for victims.

AI used to create fake employees 

The ruse also involves the hackers using AI-generated images to create profiles of employees for the three front crypto companies and stealing images of real people.

“There are numerous fake employees and stolen images from real people being used across this network. We’ve documented some of the obvious fakes and stolen images, but it’s very important to appreciate that the impersonation efforts from this campaign are different,” Edwards said.

“In one of the examples, the threat actors took a real photo from a real person, and then appeared to have run it through an AI image modifier tool to create a subtly different version of that same image.”

Related: Fake Zoom malware steals crypto while it’s ‘stuck’ loading, user warns

This malware campaign has been ongoing since 2024. Edwards says there are known public victims.

Silent Push identified two developers targeted by the campaign; one of them reportedly had their MetaMask wallet compromised.

The FBI has since shut down at least one of the companies.

“The Federal Bureau of Investigation (FBI) acquired the Blocknovas domain, but Softglide is still live, along with some of their other infrastructure,” Edwards said.

At least three crypto founders have reported in March that they foiled an attempt from alleged North Korean hackers to steal sensitive data through fake Zoom calls.

Groups such as the Lazarus Group are the prime suspects in some of the biggest cyber thefts in Web3, including the Bybit $1.4 billion hack and the $600 million Ronin network hack.

Magazine: Lazarus Group’s favorite exploit revealed — Crypto hacks analysis

Read the full article here

Follow us on Google News to get the latest Updates

 
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Amalgam Founder Charged With Running ‘Sham Blockchain’, Taking $1M From Investors

May 21, 2025

Crypto Exchange Lbank Halts UAE Registrations, Plans to Retire Users in Russia, Ukraine

May 21, 2025

Bitcoin price hit a new all-time high and data shows BTC bulls aren’t done yet

May 21, 2025

Low Hashprice Forces Bitcoin Miners to Sell Record BTC Ahead of $109k ATH

May 21, 2025

Texas House Approves Strategic Bitcoin Reserve Bill, Awaits Governor’s Signature

May 21, 2025

Bitcoin hits new highs in the absence of ‘unhealthy’ leverage use — Will the rally continue?

May 21, 2025
Add A Comment
Leave A Reply Cancel Reply

Top Articles

Amalgam Founder Charged With Running ‘Sham Blockchain’, Taking $1M From Investors

May 21, 2025

Crypto Exchange Lbank Halts UAE Registrations, Plans to Retire Users in Russia, Ukraine

May 21, 2025

Bitcoin price hit a new all-time high and data shows BTC bulls aren’t done yet

May 21, 2025
ApeWatcher News
X (Twitter) Telegram
  • Privacy Policy
  • Sources
  • Terms and Conditions
  • Contact
  • Advertise
© 2025 Ape Watcher News

Type above and press Enter to search. Press Esc to cancel.