What’s happening?
Security researchers have discovered a sophisticated scam where North Korean hackers pretend to be recruiters from legitimate companies. They’re specifically targeting software developers, especially those working with cryptocurrency and Web3 projects (the next generation of internet technology).
This campaign, nicknamed “Contagious Interview” by security experts, has been running since late 2022 and affects developers using Windows, Mac, and Linux computers.
How to Protect Yourself
Red Flags to Watch For
During Job Applications:
- Unusually high salaries for your experience level
- Pressure to quickly complete technical assessments
- Requests to download software from unofficial sources
- Video interview platforms you’ve never heard of
- Grammar mistakes or unusual phrasing in communications
During Technical Tests:
- Instructions to disable security software
- Commands that seem unnecessary for the task
- Files that trigger antivirus warnings
- Requests to run scripts in administrator mode
Safety Guidelines
- Verify the Recruiter
- Be Cautious with Technical Tests
- Protect Your Cryptocurrency
- General Security Measures