Loading...
[Research: North Korean Hacker Group Lazarus Uses Git Hooks to Hide Malware] According to OpenSourceMalware research, the North Korean hacker group Lazarus has adopted new techniques in malicious activities targeting developers, such as 'Infectious Interview' and 'TaskJacker,' by hiding second-stage loaders in Git Hooks' pre-commit scripts. 'Infectious Interview' refers to a series of attacks where the group fabricates recruitment processes in the cryptocurrency/DeFi sector to lure developers into cloning malicious code repositories, ultimately stealing crypto assets and credentials. Researchers recommend that developers who are asked to clone code repositories as part of an interview process should be cautious of such risks. It is best to run these repositories in isolated environments and avoid mounting personal browser configurations, SSH keys, and crypto wallets.