TechFlow, April 17 — According to Cointelegraph, a North Korean hacking group is targeting cryptocurrency developers through fake technical assessments. The hackers impersonate recruiters on LinkedIn, sending developers coding test assignments containing malicious code. Once the file is opened, malware is installed, compromising the victim's system security.
Hakan Unal, Head of Security Operations Center at cybersecurity firm Cyvers, said the attackers primarily aim to steal developer credentials and access to code, including cloud configurations, SSH keys, system metadata, and wallet access permissions. The attack is attributed to the North Korean hacking group Slow Pisces, also known as Jade Sleet. Security experts advise developers to remain cautious of unsolicited job offers with terms that appear "too good to be true."




