North Korean attackers are using LinkedIn to target developers in a fake job recruitment operation that delivers malware, Google’s Mandiant reports. The operation sends a Python coding challenge containing COVERTCATCH malware, with the aim of compromising a target’s macOS system. Similar operations have been observed delivering other malware families, including RustBucket and KANDYKORN.
Threat Actors Exploiting DevOps Web Servers Misconfigurations To Deploy Malware
A new cryptojacking campaign, led by threat actor JINX-0132, exploits misconfigurations in popular DevOps applications like HashiCorp Nomad and Docker API. By utilizing legitimate tools
