Golden Finance reports that a cyber threat actor linked to North Korea is exploiting new malware targeting job seekers in the crypto industry, with the intent to steal passwords from crypto wallets and password managers. Cisco Talos reported on Wednesday that it has discovered a Python-based remote access Trojan (RAT) named "PylangGhost" and has associated this malware with a North Korean-linked hacker group called "Famous Chollima" (also known as "Wagemole").
The hacker organization mainly targets job seekers and employees with experience in crypto assets and blockchain, especially in India, conducting attacks through social engineering tactics in the form of fake job interviews.
View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
North Korea launches new information-stealing malware "PylangGhost" targeting Crypto Assets practitioners.
Golden Finance reports that a cyber threat actor linked to North Korea is exploiting new malware targeting job seekers in the crypto industry, with the intent to steal passwords from crypto wallets and password managers. Cisco Talos reported on Wednesday that it has discovered a Python-based remote access Trojan (RAT) named "PylangGhost" and has associated this malware with a North Korean-linked hacker group called "Famous Chollima" (also known as "Wagemole"). The hacker organization mainly targets job seekers and employees with experience in crypto assets and blockchain, especially in India, conducting attacks through social engineering tactics in the form of fake job interviews.