Mastodawn

New to The Fake Interview? Start with the trailer.

In under 90 seconds: fake coding interviews, malicious developer repos, Lazarus-attributed infrastructure, credential theft, and the investigation behind Episode 1 and Episode 2.

Trailer: https://open.spotify.com/episode/1k95vAnI5tOfrp7zK2bys0?si=3CPB1YN6TQyU6niMNPKavg

Latest episode: https://open.spotify.com/episode/1f0HVuCeLaNxdA72xrDLDS?si=NU-TCDDmQUalbaq1zgUdlw

#fakeinterview #contagiousinterview #dprk #lazarus #threatintel #redasgard #cybersecurity #podcast

Trailer: The Fake Interview

The Fake Interview · Episode

Spotify

valh4x Apr 30

Important findings for security professionals: "Hunting Lazarus Part VI: The Factory That Ate Its Workers"

Originally published on Red Asgard: https://redasgard.com/blog/hunting-lazarus-part6-factory-that-ate-its-workers

#lazarus #huntinglazarus #helpme #dprk #contagiousinterview #northkorea #atribution #redasgard #cybersecurity #threatintel #threathunt

Hunting Lazarus Part VI: The Factory That Ate Its Workers

Five operator workstations appeared in the campaign's own victim database. The same exfiltration pipeline that harvested developer credentials, wallet material, and source-repository tokens had ingested the staff who ran it — the supervisor, a persona operator, a test workstation, a provisioning workstation, and an operator infection that persisted sixty-eight days.

Red Asgard