What looks like an attractive job offer may be anything but. Symantec, the security arm of Broadcom, says in an April 14 bulletin that the North Korean-linked Lazarus is targeting the chemical and information technology sectors with malicious Web files disguised as job offers, according to an article from DarkReading. Once opened, the job offers reportedly install Trojan horse programs that compromise the system and send information back to the attackers.
According to DarkReading, the effort is part of a long-running campaign known as “Operation Dream Job.” The latest attack reportedly comes on South Korean chemical companies, but previous efforts have targeted industries and government agencies in Europe, Asia and the United States. Symantec notes that the campaign started as early as August 2020.
Read the entire article here.