SlowMist said it detected malicious activity targeting developers through fake Web3 job offers. According to Foresight News, attackers posed as recruiters on LinkedIn, built trust through discussions about work experience and interviews, and then sent a GitHub repository disguised as an "Interview MVP" to trick developers into running the project.
The malicious repository hid theme/js/auron-core.min.js as a Tailwind plugin. When developers ran the project's development or build commands, a hidden Node.js loader was triggered and deployed multiple payloads designed to steal data.
AI TRENDS | SlowMist Detects Malicious Web3 Job Attack Targeting Developers
2026-07-18 08:03:46
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Previous article:
长和考虑将分拆屈臣氏伦敦上市延至明年Next article:
Kimi筹备赴港IPO