Researchers from Silent Push have identified two shell companies, Blocknovas LLC and Softglide LLC, set up by North Korea's Lazarus Group in the US. The companies were created under fake aliases and addresses, and were used to infect crypto developers with malware through fake job applications.
The hackers targeted developers' cryptocurrency wallets and passwords, which could be used for further attacks on legitimate businesses. The FBI has since seized one of the company's domains, citing a law enforcement action against North Korean cyber actors.
(Please add a warning flair on this sub)
