North Korean cyber attackers have undertaken a sophisticated assault on the tech, finance and cryptocurrency sectors by staging fake job interviews to deploy malware including “InvisibleFerret” and “BeaverTail”. These compromises systems and exfiltrates sensitive data, targeting software developers and using coding challenges, video call apps, or dependencies to embed malicious payloads.

New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
An updated version of a malware loader, known as Hijack Loader, has been discovered with new features aimed at evading detection and maintaining persistence. The