Techly NewsGet the app

Get the latest tech news

Fake Python Coding Tests Installed Malicious Software Packages From North Korea


"New malicious software packages tied to the North Korean Lazarus Group were observed posing as a Python coding skills test for developers seeking a new job at Capital One, but were tracked to GitHub projects with embedded malware," reports SC magazine: Researchers at ReversingLabs explained in a Se...

"New malicious software packages tied to the North Korean Lazarus Group were observed posing as a Python coding skills test for developers seeking a new job at Capital One, but were tracked to GitHub projects with embedded malware," reports SC magazine: Researchers at ReversingLabs explained in a September 10 blog post that the scheme was a follow-on to the VMConnect campaign that they first identified in August 2023 in which developers were lured into downloading malicious code via fake job interviews. It's implemented in the form of a Base64-encoded string that obscures a downloader function, which establishes contact with a command-and-control server in order to execute commands received as a response. Tom's Hardware reports that "The capacity for exploitation at that point is pretty much unlimited, due to the flexibility of Python and how it interacts with the underlying OS.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of North Korea

North Korea

Photo of coding tests

coding tests

Photo of fake python

fake python

Related news:

News photo

North Korea Unveils Clones of Israeli Kamikaze Drones.

News photo

North Korea Unveils Suicide Attack Drones as UAV Race Heats Up

News photo

Windows 0-Day Was Exploited By North Korea To Install Advanced Rootkit

« Show HN: Epitomē – A semantic search engine for ancient text
Optimizing your career for happiness »