North Korean Hackers Create Fake U.S. Companies to Target Victims
North Korean-linked cybercriminals have escalated their attack strategies by establishing legitimate-looking companies on U.S. soil to create fake hiring pipelines targeting the crypto industry.
According to the information, these operations mark a rare case of the regime successfully creating legal business entities to facilitate cyberattacks.
“These hackers are exploiting job seekers by posing as employers,” Best noted, emphasizing how deceptive the tactics have become.
Fake Job Offers Used to Deploy Malware
Hackers have been using fraudulent LinkedIn-style profiles and job posts to attract developers. Once engaged in a fake interview process, victims are prompted to download infected files disguised as job application tools. Silent Push’s research identified multiple victims of this campaign, which was mainly operated through a front company named Blocknovas.
Blocknovas claimed a South Carolina address that turned out to be an empty lot, while another entity, Softglide, was registered at a tax office in Buffalo, New York.
READ MORE:
SUI: Why the Price Is Up Over 20% Today
Malware Linked to North Korean Units
Silent Push confirmed that the malware deployed in these scams included at least three known strains previously attributed to North Korean cyber groups. These cyberattacks underline an increasingly aggressive approach by Pyongyang to fund state operations through crypto-related exploits.
Kosta joined the team in 2021 and quickly established himself with his thirst for knowledge, incredible dedication, and analytical thinking. He not only covers a wide range of current topics, but also writes excellent reviews, PR articles, and educational materials. His articles are also quoted by other news agencies.
