Slow Fog: Users should be aware of phishing attacks targeting blockchain engineers on LinkedIn

2025-03-15 19:34:33

Collection

ChainCatcher message, the SlowMist security team released an article warning that phishing attacks targeting blockchain engineers have appeared on the LinkedIn platform. Blockchain developer Bruno Skvorc encountered a phishing attack disguised as a recruitment effort aimed at blockchain engineers. The attacker impersonated a project party and provided a link to a Bitbucket repository containing malicious code.

The SlowMist team's technical analysis shows that the malicious code hides a crypto payload, activated through the server.js file. Once executed, the program connects to a command control server, downloads the test.js and .npl trojan programs, and subsequently steals sensitive information such as system information, browser extension wallet data, and passwords, with the ultimate goal of stealing users' crypto assets.

(Source Link)

Related tags

Slow fog fishing attack LinkedIn

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.

2025-03-19 17:28

Slow Mist Security Warning: Beware of Malicious Poisoning Attacks Targeting EOS Addresses

2025-03-19 13:15

Data: aixbt is suspected to have suffered a phishing attack resulting in a loss of 55.5 ETH, and the related conversation has been deleted

2025-03-18 16:31

Slow Fog: Four.meme token was exploited by hackers who took advantage of a vulnerability before the token was released to steal liquidity

2025-03-18 12:08

Related tags

Slow fog fishing attack LinkedIn

Mention the project