North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams

North Korean hackers have been using LinkedIn to deploy malware on a target’s macOS system. Using fake job recruiting setups, the hackers sent a ZIP file with COVERTCATCH malware disguised as a Python coding challenge. Other malware was delivered through social engineering campaigns featuring job descriptions at prominent cryptocurrency exchanges. The hackers’ attacks extended to software supply chain infiltrations. The US FBI has issued warnings about these targeted, clever social engineering campaigns, which are viewed as a medium for crypto theft, supporting the sanctions-hit nation.