Today, Silent Push released that its threat analysts have uncovered three cryptocurrency companies that are actually fronts for the North Korean APT group Contagious Interview: BlockNovas LLC, Angeloper Agency, and SoftGlide LLC.
Silent Push’s malware analysts confirmed that three strains, BeaverTail, InvisibleFerret, and OtterCookie, are being used to spread malware via “interview malware lures” to unsuspecting cryptocurrency job applicants.
The threat actor heavily uses AI-generated images to create profiles of “employees” for the three front crypto companies. As part of the crypto attacks, the threat actors are heavily using Github, job listing, and freelancer websites.
This is now live at https://www.silentpush.com/blog/contagious-interview-front-companies/
Related
This entry was posted on April 24, 2025 at 4:30 pm and is filed under Commentary with tags Silent Push. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
North Korean APT Group Created 3 Front Companies to Spread Malware to Crypto Job Applicants
Today, Silent Push released that its threat analysts have uncovered three cryptocurrency companies that are actually fronts for the North Korean APT group Contagious Interview: BlockNovas LLC, Angeloper Agency, and SoftGlide LLC.
Silent Push’s malware analysts confirmed that three strains, BeaverTail, InvisibleFerret, and OtterCookie, are being used to spread malware via “interview malware lures” to unsuspecting cryptocurrency job applicants.
The threat actor heavily uses AI-generated images to create profiles of “employees” for the three front crypto companies. As part of the crypto attacks, the threat actors are heavily using Github, job listing, and freelancer websites.
This is now live at https://www.silentpush.com/blog/contagious-interview-front-companies/
Share this:
Like this:
Related
This entry was posted on April 24, 2025 at 4:30 pm and is filed under Commentary with tags Silent Push. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.