North Korean Hackers Using Fake LinkedIn Job Offers - 1

Image by Stock Snap, from Pixabay

North Korean Hackers Using Fake LinkedIn Job Offers

  • Written by Kiara Fabbri Former Tech News Writer
  • Fact-Checked by Justyn Newman Former Lead Cybersecurity Editor

North Korean threat actors have been using LinkedIn to target developers through fake job recruiting schemes, as reported today by Hacker News . The attackers utilize coding tests as an initial method to infect victims, as highlighted in a report by Google-owned Mandiant .

North Korean recruiting-themed schemes have been widely used to deliver malware, including fake video conferencing apps, targeting job seekers on platforms such as LinkedIn and Upwork . After making initial contact, hackers guide victims to download malicious software via messaging apps like Telegram.

Mandiant’s researchers explained that recent crypto exchange heists are connected to a broader pattern of social engineering. In these schemes, developers are contacted under the pretense of job offers.

They showcase an example of an engineer who was sent a ZIP file containing malware disguised as a Python coding challenge, compromising the user’s macOS system with secondary malware. This malware persisted through macOS launch agents, further endangering the user’s system.

These tactics aren’t limited to developers. Finance professionals have also been targeted. In another incident, Mandiant observed a malicious PDF sent as part of a fake job offer for a senior position at a cryptocurrency exchange.

The PDF installed RUSTBUCKET, a backdoor malware that collects system data and runs files. It stayed active by posing as a “Safari Update” and connected to a command-and-control server.

According to the FBI , these types of cyberattacks are carefully planned. Hackers use personal information and build rapport with victims to make their schemes more convincing. Once contact is established, attackers may spend significant time engaging with their targets to foster trust.

To mitigate these risks, the FBI suggests verifying contact identities through different platforms, avoiding storing cryptocurrency wallet information on internet-connected devices, and using virtual machines for any pre-employment tests. They also recommend blocking unauthorized downloads and limiting access to sensitive information.

If you suspect your company has been targeted, the FBI advises disconnecting the affected devices from the internet and filing a detailed complaint with the FBI’s Internet Crime Complaint Center.

Watchdogs Report Google Favoring Its Own Services And Limiting Competition. - 2

Image by Anthony Quintano, from Wikimedia Commons

Watchdogs Report Google Favoring Its Own Services And Limiting Competition.

  • Written by Kiara Fabbri Former Tech News Writer
  • Fact-Checked by Justyn Newman Former Lead Cybersecurity Editor

The UK’s Competition and Markets Authority (CMA) has accused Google of abusing its dominance in tech advertising, stating that the company favors its own services and limits competition.

The CMA’s statement of objections , released on Friday, says that Google’s actions create an uneven playing field for rivals in the ad tech sector. A final decision will be made by a separate panel after considering feedback from Google.

The investigation revealed that most publishers and advertisers rely on Google’s ad tech services to buy and sell digital advertising space. The CMA believes that Google uses its market power to prioritize its own services, making it harder for competitors to offer more competitive options to publishers and advertisers.

This has raised concerns that Google’s behavior is limiting competition and preventing businesses from getting a fair deal.

According to Bloomberg , Juliette Enser, the CMA’s interim executive director of enforcement, stated that the authority’s provisional findings point to Google abusing its market power. She explained, “Google is using its market power to hinder competition when it comes to the ads people see on websites.”

Bloomberg reported that Google disagrees with the CMA’s findings. Dan Taylor, Google’s VP of Global Ads, said the case is based on misinterpretations of the ad tech sector. He added that the company plans to issue a formal response.

“Our advertising technology tools help websites and apps fund their content, and enable businesses of all sizes to effectively reach new customers,” Taylor said to CNBC .

This is not the first time Google has faced scrutiny over its advertising practices. Last year, EU regulators have also raised concerns about the company’s dominance in the tech advertising market, accusing Google of favoring its own ad exchange program over competitors, giving it an unfair advantage in the industry.

The European Commission suggested that Google might need to restructure its ad tech business to address these concerns. Bloomberg points out that in July 2023, the European Commission noted that simply requiring Google to implement behavioral changes might not be enough to address its anti-competitive practices.

This raises the possibility of a more drastic measure, such as ordering Google to separate its ad tech business from its core services.