LinkedIn İş Görüşmelerindeki Sinsi Tehlike: BeaverTail ve Lazarus Grubu

İş arayan geliştiricileri hedef alan, mülakat projesi adı altında sistemlere sızan Kuzey Kore destekli Lazarus Grubu'nun 'BeaverTail' zararlısını analiz ettim. Node.js backend dosyalarına gizlenen sinsi 'eval()' çağrılarını, npoint.io üzerinden dinamik kod çalıştırmayı ve tarayıcı şifrelerini çalan bu mekanizmaya karşı bare-metal koruma disiplinini an

https://yuceltoluyag.github.io/linkedin-is-gorusmesi-dolandiriciligi-beavertail/

#cybersecurity #lazarus #malware #node #scam

New to The Fake Interview? Start with the trailer.

In under 90 seconds: fake coding interviews, malicious developer repos, Lazarus-attributed infrastructure, credential theft, and the investigation behind Episode 1 and Episode 2.

Trailer: https://open.spotify.com/episode/1k95vAnI5tOfrp7zK2bys0?si=3CPB1YN6TQyU6niMNPKavg

Latest episode: https://open.spotify.com/episode/1f0HVuCeLaNxdA72xrDLDS?si=NU-TCDDmQUalbaq1zgUdlw

#fakeinterview #contagiousinterview #dprk #lazarus #threatintel #redasgard #cybersecurity #podcast

Lazarus Group Uses Git Hooks to Hide Malware

북한 해킹 그룹 Lazarus가 개발자 인터뷰용 깃허브 저장소에 악성코드를 숨기기 위해 Git hooks를 악용하는 새로운 수법을 발견했다. 이들은 pre-commit 훅을 이용해 운영체제별 악성 페이로드를 자동 실행하며, 이는 개발자들이 흔히 사용하는 워크플로우에 자연스럽게 침투한다. 특히, 가짜 채용 인터뷰라는 사회공학 기법과 결합되어 있어 개발자들의 주의가 필요하다. 보안 전문가들은 의심스러운 저장소를 발견하면 격리된 환경에서 실행하고, 훅 스크립트를 꼼꼼히 검사할 것을 권고한다.

https://opensourcemalware.com/blog/dprk-git-hooks-malware

#malware #git #security #lazarus #supplychainattack

Wer darf sich ab 01.06 um ein neuen Job kümmern?
War jetzt fast 10 Jahre in Rente auf Zeit. Und nun meint die Rentenkasse, ich kann wieder mehr als 6 Stunden täglich arbeiten. Was ich aber nicht glaube.

2016 hatte, ich in Zwei Foren gefragt und habe mein Traumjob gefunden. Dann kam die Erkrankung.
Was ich suche ist ein Job ohne Ausbildung und den ich im Sitzen erledigen kann.

Ich arbeite Zuhause mit Lazarus unter Linux. Bin gelernter Bäcker.

Zuhause bin ich auch gerade nicht.
Wer Ideen hat auch für weiter Hachtags...

#jobsuche, #lazarus, #objekt #pascal

Important findings for security professionals: "Hunting Lazarus Part VI: The Factory That Ate Its Workers"

Originally published on Red Asgard: https://redasgard.com/blog/hunting-lazarus-part6-factory-that-ate-its-workers

#lazarus #huntinglazarus #helpme #dprk #contagiousinterview #northkorea #atribution #redasgard #cybersecurity #threatintel #threathunt

Lazarus – Case of – Simple Possibilities

Lazarus is an excellent solution for all Delphi and Pascal-like programming enthusiasts. But it's also designed for Windows-oriented solutions. Pascal-like programs include Free Pascal and Turbo Pascal, for example. And this is a continuation of the selection operator.

https://dimalinkeng.blogspot.com/2026/04/lazarus-case-of-simple-possibilities.html

#delphi #lazarus #caseof #programming #select #training #words #digits #code

Lazarus Group Targets macOS Users via ClickFlixAttack

Lazarus Group uses ClickFixto trick macOS users into fake meeting pages and executing malicious commands.

Pulse ID: 69ec9743b876273d04a7efb0
Pulse Link: https://otx.alienvault.com/pulse/69ec9743b876273d04a7efb0
Pulse Author: cryptocti
Created: 2026-04-25 10:28:19

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #Lazarus #Mac #MacOS #OTX #OpenThreatExchange #bot #cryptocti

Lazarus Group Targets macOS Users via ClickFlixAttack

Lazarus Group uses ClickFixto trick macOS users into fake meeting pages and executing malicious commands.

Pulse ID: 69ec976bddee2a8bbe864445
Pulse Link: https://otx.alienvault.com/pulse/69ec976bddee2a8bbe864445
Pulse Author: cryptocti
Created: 2026-04-25 10:28:59

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #Lazarus #Mac #MacOS #OTX #OpenThreatExchange #bot #cryptocti