b2b-daily
Search
Close this search box.
Search
Close this search box.
Home | IT | Cyber Security

North Korean Hackers Target Job Seekers and Developers with New MacOS Malware

Avatar photo
by Dwaine Evans
February 5, 2025
North Korean Hackers Target Job Seekers and Developers with New MacOS Malware

In a burgeoning wave of cyber threats, North Korean hackers have launched an insidious campaign targeting job seekers and developers, utilizing a sophisticated variant of the macOS Ferret malware family. This ominous campaign, dubbed “Contagious Interview,” has been traced to North Korean threat actors who deceitfully pose as job interviewers to trick victims into downloading malware onto their systems. The campaign’s malware arsenal includes several pernicious variants: FROSTYFERRET_UI, FRIENDLYFERRET_SECD, MULTI_FROSTYFERRET_CMDCODES, and BeaverTail, which deploys the nefarious Python backdoor known as InvisibleFerret. SentinelOne researchers recently unearthed another variant, FlexibleFerret, which first surfaced in November 2023, ingeniously circumventing Apple’s robust XProtect detection.

The Expanding Target Base

Initially targeting job seekers, this harmful campaign has now broadened its scope to ensnare developers. When the malware gains access to a victim’s system, it commences a series of malicious actions, starting with executing a shell script to install a persistence agent, thus ensuring it reactivates even after system reboots. The malware disguises itself as legitimate software updates, such as mimicking a Google Chrome update, allowing it to stealthily extract sensitive information from compromised devices, specifically aiming at web browsers and cryptocurrency wallets to harvest crucial data.

The progression of these malware strains highlights a broader trend in cybersecurity, where threat actors are constantly evolving their methods to outsmart advanced security protocols. The techniques employed in the FlexibleFerret variant emphasize this relentless pursuit of greater deceit and efficiency in evading detection. These developments serve as a stark reminder of the ongoing threats posed by state-sponsored cybercriminals, emphasizing the need for enhanced cybersecurity measures. By examining the technical details of these malware variants, the research underscores the crucial importance of vigilance and robust security practices amidst ever-evolving cyber threats.

Information Security

Explore more

How Is Tabnine Transforming DevOps with AI Workflow Agents?
November 7, 2025

In the fast-paced realm of software development, DevOps teams are constantly racing against time to deliver high-quality products under tightening deadlines, often facing critical challenges. Picture a scenario where a critical bug emerges just hours before a major release, and the team is buried under repetitive debugging tasks, with documentation lagging behind. This is the reality for many in the

5 Key Pillars for Successful Web App Development
November 7, 2025

In today’s digital ecosystem, where millions of web applications compete for user attention, standing out requires more than just a sleek interface or innovative features. A staggering number of apps fail to retain users due to preventable issues like security breaches, slow load times, or poor accessibility across devices, underscoring the critical need for a strategic framework that ensures not

How Is Qovery’s AI Revolutionizing DevOps Automation?
November 7, 2025

Introduction to DevOps and the Role of AI In an era where software development cycles are shrinking and deployment demands are skyrocketing, the DevOps industry stands as the backbone of modern digital transformation, bridging the gap between development and operations to ensure seamless delivery. The pressure to release faster without compromising quality has exposed inefficiencies in traditional workflows, pushing organizations

DevSecOps: Balancing Speed and Security in Development
November 7, 2025

Today, we’re thrilled to sit down with Dominic Jainy, a seasoned IT professional whose deep expertise in artificial intelligence, machine learning, and blockchain also extends into the critical realm of DevSecOps. With a passion for merging cutting-edge technology with secure development practices, Dominic has been at the forefront of helping organizations balance the relentless pace of software delivery with robust

How Will Dreamdata’s $55M Funding Transform B2B Marketing?
November 7, 2025

Today, we’re thrilled to sit down with Aisha Amaira, a seasoned MarTech expert with a deep passion for blending technology and marketing strategies. With her extensive background in CRM marketing technology and customer data platforms, Aisha has a unique perspective on how businesses can harness innovation to uncover vital customer insights. In this conversation, we dive into the evolving landscape