Malicious Actors Pose as Crypto Firm Recruiters
Crypto hackers have devised a new way of tricking their victims into downloading malware that can grant them access to the victim’s computer and drain their wallets or cause significant damage. According to blockchain sleuth Taylor Monahan, known as Tay on X, the hackers first pose as recruiters from reputable crypto firms offering their target a salary ranging from $200,000 to $350,000.
How the Attack Works
The malicious actors would initially reach out to interviewees with long-response questions before one final question that needs to be recorded on video. However, victims will find an issue with granting microphone and camera access and are told they have a cache problem. They are then instructed on "the solution" to resolve the problem.
The Malware Attack Method
Monahan explained that once the victim follows the instructions to fix the microphone and video access issue, Chrome prompts them to update or restart their browser to "fix the issue." However, this is not a solution but rather an attempt by the malware to gain backdoor access to the victim’s devices.
Consequences of Falling for the Attack
The malware provides attackers with access to the victim’s computer, allowing them to potentially drain crypto funds. Monahan warned that the attacks are effective on Mac, Windows, and Linux operating systems.
How Victims Fall for the Malware Attack
Monahan stated that the fake recruiters reach out to victims on professional networking site LinkedIn out of the blue, advertising various roles at notable crypto firms like Gemini and Kraken. They have also contacted people on freelancer websites, Discord, and Telegram.
Interview Questions Used in the Malware Attack
The written interview included questions such as:
- What crypto trends do you think will be most significant for the industry over the next 12 months?
- How a business development representative should expand the crypto firm’s partnerships in Southeast Asia or Latin America on a limited budget.
Recommendations from Taylor Monahan
Monahan recommended that those who have already been exposed to the malware wipe their computers. She also advised everyone to be "careful" and remain "skeptical."
Prevention Measures
To avoid falling victim to this malware attack, it is essential to exercise caution when receiving unsolicited job offers from unknown sources. Be wary of questions that require you to record video or grant access to your microphone and camera.
Related Stories
- Scammers are using Telegram verification bots to inject crypto-stealing malware
- Magazine: Story Protocol helps creators survive AI onslaught with ‘programmable IP’ crypto
Conclusion
Crypto hackers have developed a new way of tricking their victims into downloading malware. This method involves posing as recruiters from reputable crypto firms and asking for interviewees to record video or grant access to their microphone and camera. The malware provides attackers with backdoor access to the victim’s devices, allowing them to potentially drain crypto funds.
It is essential to exercise caution when receiving unsolicited job offers from unknown sources. Be wary of questions that require you to record video or grant access to your microphone and camera. Monahan recommended that those who have already been exposed to the malware wipe their computers.
What Can You Do?
- Exercise caution when receiving unsolicited job offers from unknown sources
- Be wary of questions that require you to record video or grant access to your microphone and camera
- Wipe your computer if you suspect you have fallen victim to this malware attack
- Remain skeptical and be careful
