By John Greenwood
The North Korean hacking group known as ‘Lazarus’ recently targeted employees of a Spanish aerospace company through a clever ruse involving fake job opportunities. They posed as recruiters, specifically someone named Steve Dawson from Meta (Facebook), on LinkedIn.
The attackers initiated a fraudulent recruitment process that eventually required victims to download a file. As part of this scheme, victims were coerced into proving their proficiency in C++ programming by downloading quiz executables shared as ISO files. These executables unwittingly dropped an additional payload onto the victim’s machines, enabling the hackers to infiltrate the corporate network