Contagious Interview
Malicious
Campaign
Aliases: Wagemole, Beavertail, Invisible Ferret
Description
Contagious Interview (CL-STA-0240) is a campaign attributed to North Korean state-sponsored threat actors that targets software developers through fictitious job interviews. The attackers lure victims into installing malware disguised as software for review, with the objective of cryptocurrency theft and using compromised systems for further attacks. The campaign utilizes malicious NPM packages hosted on GitHub and employs social engineering tactics to deceive victims.
Targets
- Software developers
- Windows
- Linux
- macOS
Domains
17
IPv4 Addresses
9
Last updated 2025-04-03T18:34:10Z
View DNS history, indicators, and additional details with a free community account.
Use your professional email to create your Validin community account.
Already have an account? Sign in