North Korean Hackers Target Over 3,100 IPs Through Fake Job Interviews

KuCoinFlash

Release Time: 01/22/2026 11:31:48

Summary

On-chain news reveals that North Korean hackers from the group PurpleBravo targeted over 3,100 IP addresses associated with AI, cryptocurrency news, and financial firms through fake job interviews. The attackers posed as recruiters to entice victims into executing malicious code during technical assessments. The breach affected 20 companies across five regions. Researchers discovered that the hackers used fake Ukrainian identities and deployed malware named PylangGhost and GolangGhost to steal credentials. Additionally, a weaponized version of Visual Studio Code was used to implant backdoors via malicious Git repositories.

BlockBeats News: On January 22, following the theft of over $2 billion from the cryptocurrency market in 2025, North Korean hackers have returned. A hacking group known as PurpleBravo has launched a large-scale fake recruitment campaign, targeting more than 3,100 internet addresses related to artificial intelligence, cryptocurrency, and financial services companies. Attackers impersonated recruiters or developers to lure job seekers into performing technical interview tasks, such as code reviews, cloning code repositories, or completing programming assignments, which allowed the execution of malicious code on corporate devices. To date, 20 organizations in South Asia, North America, Europe, the Middle East, and Central America have been confirmed as victims.

Researchers have found that North Korean hackers used fake Ukrainian identities as cover and deployed two remote access trojans, PylangGhost and GolangGhost, to steal browser credentials. Additionally, they weaponized Microsoft Visual Studio Code, implanting backdoors through malicious Git repositories.

Source:Show original

Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information. Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.