DPRK-linked Contagious Interview campaign turns Web3 job tests into wallet-stealing malware
𝕏 •
Revision history
3 recorded changes
Want your article here?
Promote with Leviathan NewsThe Contagious Interview campaign, attributed to Lazarus/APT38-style DPRK-linked actors, uses fake Web3 recruiting flows to make developers run malware disguised as take-home tests. The lure is polished: LinkedIn outreach, PDFs/Figma boards, Google Meet interviews, then GitHub/Bitbucket repos, OneDrive downloads, npm postinstall hooks, obfuscated WASM, or fake meeting tools aimed at wallets, seed phrases, browser creds, and company access. MetaLamp says it dodged one after spotting a suspicious Bitbucket repo and a 17-day-old npm package executing `eval(JSON.parse(b))`, the kind of payload that can turn one careless `npm install` into a full compromise.
TLDR by @Benthic
More on Web3
AP Collective founder outlines a Web3 competitive analysis framework, showing how projects can use onchain data, tokenomics, sentiment, and positioning gaps to gain market advantage before launch
𝕏/@0xAbhiP ·
Web3’s 2026 growth is increasingly driven by DeFi nomads, emerging-market users and institutions, as global crypto ownership nears 900M and TVL stabilizes above $80B
𝕏/@officer_secret ·
Influence360 launches Web3 KOL platform with AI-powered discovery and attribution
decrypt.co ·
OpenSea says it’s evolving beyond NFTs into a broader crypto ownership platform, betting on onchain assets and verifiable digital property across Web3
𝕏/@TheBlockCo ·
Bhutan’s Gelephu Mindfulness City is fast-tracking crypto licenses and bank access to attract regulated Web3 firms with zero-tax incentives and Bitcoin-backed reserves
CoinTelegraph ·
a16z Crypto raises $2.2B for its fifth fund, doubling down on next-gen blockchain startups as venture giants bet big on Web3 innovation despite ongoing market uncertainty
𝕏/@a16zcrypto ·
AP Collective founder outlines a Web3 competitive analysis framework, showing how projects can use onchain data, tokenomics, sentiment, and positioning gaps to gain market advantage before launch
𝕏/@0xAbhiP ·
Web3’s 2026 growth is increasingly driven by DeFi nomads, emerging-market users and institutions, as global crypto ownership nears 900M and TVL stabilizes above $80B
𝕏/@officer_secret ·
Influence360 launches Web3 KOL platform with AI-powered discovery and attribution
decrypt.co ·
OpenSea says it’s evolving beyond NFTs into a broader crypto ownership platform, betting on onchain assets and verifiable digital property across Web3
𝕏/@TheBlockCo ·
Bhutan’s Gelephu Mindfulness City is fast-tracking crypto licenses and bank access to attract regulated Web3 firms with zero-tax incentives and Bitcoin-backed reserves
CoinTelegraph ·
a16z Crypto raises $2.2B for its fifth fund, doubling down on next-gen blockchain startups as venture giants bet big on Web3 innovation despite ongoing market uncertainty
𝕏/@a16zcrypto ·