Lazarus Strikes Again: The ClickFix Con Job That’s Duping Job Seekers and Draining Crypto Wallets

Lazarus is back with the latest “ClickFix” attack, targeting job seekers with fake interviews to steal cryptocurrency. The North Korean cybercriminal group is impersonating major companies to lure victims into downloading malware. With a track record of success, Lazarus aims to fund the North Korean government through these deceptive tactics.

3P
Published: April 1, 2025 1:30 pmAdded: April 1, 2025 at 6:58 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Just when you thought job interviews couldn’t get any worse, along comes North Korea’s Lazarus group with a “ClickFix” twist. Forget awkward silences and weird interview questions—now you’ve got to worry about downloading malware while you’re at it. Talk about a hostile work environment!

Key Points:

  • Lazarus is using a new social engineering tactic called “ClickFake Interview” to target job seekers.
  • The campaign aims to steal cryptocurrency and sensitive data through fake job interviews.
  • Targets include employees from centralized finance organizations with limited tech expertise.
  • The attack method involves impersonating well-known companies such as Coinbase and Kraken.
  • Victims are tricked into downloading malware disguised as a driver to “fix” a fake error.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?