North Korea’s Lazarus Is Targeting Crypto Executives With Zoom Calls
North Korean Lazarus sub-group BlueNoroff is using sophisticated social engineering via fake Zoom calls and job offers to target crypto executives with malware.Summary
North Korean crypto hackers, specifically the Lazarus sub-group BlueNoroff, are escalating their attacks against Web3 executives using more sophisticated social engineering tactics under campaigns named GhostCall and GhostHire. Previously relying on infected files from fake job offers, they now use recycled video calls and impersonations of executives, often posing as potential investors (GhostCall) or recruiters (GhostHire). The ultimate goal is to trick victims into downloading malware, often disguised as legitimate software like Zoom or Microsoft Teams clones. Kaspersky reports that these campaigns leverage improved coordination, AI-generated content, and even fragments of real video calls to enhance realism. A key vulnerability remains that the victim must interact with the suspicious software, but the hackers are recycling compromised data to create new, highly believable scams.
(Source:BeInCrypto)