North Korean hackers expand fake recruitment scheme to deliver new malware



News North Korean hackers expand fake recruitment scheme to deliver new malware Researchers say Lazarus Group-linked actors behind 11 malicious packages deploying BeaverTail infostealer and RAT loader Shreyas Reddy April 7, 2025 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON Illustration representing BeaverTail packages on compromised computers \| Image: NK Pro North Korean cybercriminals are expanding their fake recruitment schemes targeting job seekers to deploy their signature espionage malware and new tools allowing them to take control of victims’ systems, according to a new report. U.S. cybersecurity firm Socket said in a report published on Friday that actors linked to North Korea’s infamous Lazarus Group recently published 11 new malicious packages that deliver the previously identified BeaverTail infostealer and a new remote access trojan (RAT) loader. The firm, which specializes in preventing software supply chain attacks that compromise vendors that are part of the actual Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01Elite absences hint at a North Korean power struggle ahead of party congress 02With Yoon’s exit, South Korea faces critical choices on North Korea strategy 03Tools of the trade: How North Korea launders billions in stolen cryptocurrency 04North Korea’s ‘new’ sniper rifle likely Austrian import or copy: Analysis 05North Korean ICBM factory upgrade project resumes, expands: Imagery 06Ruse or revolution? Analyzing North Korea’s new drone and AEW&C aircraft 07New construction underway near North Korean aircraft factories amid drone push 08What Americans think about travel to North Korea, 8 years after Warmbier’s death

News

North Korean hackers expand fake recruitment scheme to deliver new malware

Researchers say Lazarus Group-linked actors behind 11 malicious packages deploying BeaverTail infostealer and RAT loader

Shreyas Reddy April 7, 2025

North Korean hackers expand fake recruitment scheme to deliver new malware

Illustration representing BeaverTail packages on compromised computers | Image: NK Pro

North Korean cybercriminals are expanding their fake recruitment schemes targeting job seekers to deploy their signature espionage malware and new tools allowing them to take control of victims’ systems, according to a new report.

U.S. cybersecurity firm Socket said in a report published on Friday that actors linked to North Korea’s infamous Lazarus Group recently published 11 new malicious packages that deliver the previously identified BeaverTail infostealer and a new remote access trojan (RAT) loader.

The firm, which specializes in preventing software supply chain attacks that compromise vendors that are part of the actual

01Elite absences hint at a North Korean power struggle ahead of party congress
02With Yoon’s exit, South Korea faces critical choices on North Korea strategy
03Tools of the trade: How North Korea launders billions in stolen cryptocurrency
04North Korea’s ‘new’ sniper rifle likely Austrian import or copy: Analysis
05North Korean ICBM factory upgrade project resumes, expands: Imagery
06Ruse or revolution? Analyzing North Korea’s new drone and AEW&C aircraft
07New construction underway near North Korean aircraft factories amid drone push
08What Americans think about travel to North Korea, 8 years after Warmbier’s death

North Korean hackers expand fake recruitment scheme to deliver new malware

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy