b2b-daily
Home | IT | Cyber Security

North Korean Hackers Target Job Seekers and Developers with New MacOS Malware

Avatar photo
by Dwaine Evans
February 5, 2025
North Korean Hackers Target Job Seekers and Developers with New MacOS Malware

In a burgeoning wave of cyber threats, North Korean hackers have launched an insidious campaign targeting job seekers and developers, utilizing a sophisticated variant of the macOS Ferret malware family. This ominous campaign, dubbed “Contagious Interview,” has been traced to North Korean threat actors who deceitfully pose as job interviewers to trick victims into downloading malware onto their systems. The campaign’s malware arsenal includes several pernicious variants: FROSTYFERRET_UI, FRIENDLYFERRET_SECD, MULTI_FROSTYFERRET_CMDCODES, and BeaverTail, which deploys the nefarious Python backdoor known as InvisibleFerret. SentinelOne researchers recently unearthed another variant, FlexibleFerret, which first surfaced in November 2023, ingeniously circumventing Apple’s robust XProtect detection.

The Expanding Target Base

Initially targeting job seekers, this harmful campaign has now broadened its scope to ensnare developers. When the malware gains access to a victim’s system, it commences a series of malicious actions, starting with executing a shell script to install a persistence agent, thus ensuring it reactivates even after system reboots. The malware disguises itself as legitimate software updates, such as mimicking a Google Chrome update, allowing it to stealthily extract sensitive information from compromised devices, specifically aiming at web browsers and cryptocurrency wallets to harvest crucial data.

The progression of these malware strains highlights a broader trend in cybersecurity, where threat actors are constantly evolving their methods to outsmart advanced security protocols. The techniques employed in the FlexibleFerret variant emphasize this relentless pursuit of greater deceit and efficiency in evading detection. These developments serve as a stark reminder of the ongoing threats posed by state-sponsored cybercriminals, emphasizing the need for enhanced cybersecurity measures. By examining the technical details of these malware variants, the research underscores the crucial importance of vigilance and robust security practices amidst ever-evolving cyber threats.

Information Security

Explore more

Why Data Architecture Matters More Than AI Algorithms
March 25, 2026

The most expensive algorithm in the world remains a dormant asset if the data fueling it is disconnected from the operational realities of the business it is meant to serve. Organizations today are pouring unprecedented capital into artificial intelligence, yet a startling percentage of these initiatives stall before they ever deliver a measurable return on investment. The breakdown is rarely

Can AI and Embedded Finance Fuel Adyen’s Market Recovery?
March 25, 2026

The global fintech sector is currently watching a high-stakes transformation as Adyen NV attempts to redefine its identity amidst one of the most volatile periods in its corporate history. After a staggering 36% decline in share price that saw the stock price flirt with a 52-week low of $10.41, the Dutch payments giant is no longer content with being a

Flowpay and Teya Launch AI-Powered SME Financing in Europe
March 25, 2026

Small business owners across Europe are discovering that securing vital growth capital no longer requires navigating the labyrinthine hallways of traditional banking institutions or submitting stacks of outdated financial statements. The historical friction of credit applications, often characterized by weeks of uncertainty, is giving way to a new paradigm of digital immediacy. This shift is driven by a strategic partnership

Digital Investment Leads Economic Growth in the Post-Crisis Era
March 25, 2026

The staggering reality of modern macroeconomics reveals that a nation’s prosperity is no longer anchored by the weight of its industrial machinery but by the invisible strength of its data architecture. While global markets have struggled with sluggish growth since the 2008 financial crisis, a quiet revolution in capital allocation has fundamentally rewritten the rules of economic success. The traditional

OpenAI Acquires Astral to Boost Python Development Tools
March 25, 2026

The modern software landscape has reached a tipping point where the traditional wait times for code compilation and linting are no longer acceptable for developers working at the edge of artificial intelligence. In a world defined by rapid iteration, OpenAI has officially announced the acquisition of Astral, a move designed to integrate high-performance engineering directly into the most popular programming