How to Get Scammed (by DPRK Hackers)
Contents
Hello there,
I am someone who is more than happy to accept your scam offer. For that, today we will discuss one of the scammer stories I have collected so far — a long journey involving malware that is said to be backed by DPRK threat actors.
I won’t dive too deeply into tracing every single byte of the malware. Instead, I’ll link to researchers who have spent their time doing exactly that (shoutout to them). What we will focus on is the approach: how we can actually detect if something is a scam, because let’s face it — as developers we can’t live in a bubble refusing to accept anything from anyone. Hopefully, this will be both fun and useful.
Press enter or click to view image in full size
This campaign is tracked under multiple names by security researchers:
- **DEV#POPPER** (Securonix) — The social engineering delivery method: fake job interviews targeting developers
- …
I am someone who is more than happy to accept your scam offer. For that, today we will discuss one of the scammer stories I have collected so far — a long journey involving malware that is said to be backed by DPRK threat actors.
I won’t dive too deeply into tracing every single byte of the malware. Instead, I’ll link to researchers who have spent their time doing exactly that (shoutout to them). What we will focus on is the approach: how we can actually detect if something is a scam, because let’s face it — as developers we can’t live in a bubble refusing to accept anything from anyone. Hopefully, this will be both fun and useful.
Press enter or click to view image in full size
This campaign is tracked under multiple names by security researchers:
- **DEV#POPPER** (Securonix) — The social engineering delivery method: fake job interviews targeting developers
- …