North Korea-Linked PurpleBravo Targets AI and Crypto Firms via Fake Job Interviews

PurpleBravo’s latest cyber espionage campaign expanded to AI, crypto, and financial sectors, impacting organizations across South Asia, North America, and Europe through malicious recruitment tactics.

50d ago

Summary

The North Korean hacker group PurpleBravo targeted over 3,100 IPs connected to AI, crypto, and financial sectors, employing a fake recruitment campaign to deploy PylangGhost and GolangGhost RATs. This attack affected organizations in South Asia, North America, and Europe, leveraging social engineering tactics and sophisticated malware.

Terms & Concepts

Remote Access Trojan (RAT): Malicious software that enables covert remote control over an infected computer.
PylangGhost: A Python-based remote access trojan designed for cyber espionage operations.
GolangGhost: A remote access trojan written in Go language used to infiltrate and control targeted systems.