North Korean hackers expand fake recruitment scheme to deliver new malware



News North Korean hackers expand fake recruitment scheme to deliver new malware Researchers say Lazarus Group-linked actors behind 11 malicious packages deploying BeaverTail infostealer and RAT loader Shreyas Reddy April 7, 2025 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON Illustration representing BeaverTail packages on compromised computers \| Image: NK Pro North Korean cybercriminals are expanding their fake recruitment schemes targeting job seekers to deploy their signature espionage malware and new tools allowing them to take control of victims’ systems, according to a new report. U.S. cybersecurity firm Socket said in a report published on Friday that actors linked to North Korea’s infamous Lazarus Group recently published 11 new malicious packages that deliver the previously identified BeaverTail infostealer and a new remote access trojan (RAT) loader. The firm, which specializes in preventing software supply chain attacks that compromise vendors that are part of the actual Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01North Korean ICBM factory upgrade project resumes, expands: Imagery 02Ruse or revolution? Analyzing North Korea’s new drone and AEW&C aircraft 03New construction underway near North Korean aircraft factories amid drone push 04What Americans think about travel to North Korea, 8 years after Warmbier’s death 05North Korea preparing to move large new warship in sign of advanced development 06How Trump can break the impasse with North Korea by prioritizing nuclear safety 07Why there’s still a long road to Trump-Putin cooperation on North Korean nukes 08With new frigates, North Korea broadcasts a more assertive naval approach

News

North Korean hackers expand fake recruitment scheme to deliver new malware

Researchers say Lazarus Group-linked actors behind 11 malicious packages deploying BeaverTail infostealer and RAT loader

Shreyas Reddy April 7, 2025

North Korean hackers expand fake recruitment scheme to deliver new malware

Illustration representing BeaverTail packages on compromised computers | Image: NK Pro

North Korean cybercriminals are expanding their fake recruitment schemes targeting job seekers to deploy their signature espionage malware and new tools allowing them to take control of victims’ systems, according to a new report.

U.S. cybersecurity firm Socket said in a report published on Friday that actors linked to North Korea’s infamous Lazarus Group recently published 11 new malicious packages that deliver the previously identified BeaverTail infostealer and a new remote access trojan (RAT) loader.

The firm, which specializes in preventing software supply chain attacks that compromise vendors that are part of the actual

01North Korean ICBM factory upgrade project resumes, expands: Imagery
02Ruse or revolution? Analyzing North Korea’s new drone and AEW&C aircraft
03New construction underway near North Korean aircraft factories amid drone push
04What Americans think about travel to North Korea, 8 years after Warmbier’s death
05North Korea preparing to move large new warship in sign of advanced development
06How Trump can break the impasse with North Korea by prioritizing nuclear safety
07Why there’s still a long road to Trump-Putin cooperation on North Korean nukes
08With new frigates, North Korea broadcasts a more assertive naval approach

North Korean hackers expand fake recruitment scheme to deliver new malware

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy