Home > Quick > Body

AI TRENDS | SlowMist Detects Malicious Web3 Job Attack Targeting Developers

clock
2026-07-18 08:03:46
SlowMist said it detected malicious activity targeting developers through fake Web3 job offers. According to Foresight News, attackers posed as recruiters on LinkedIn, built trust through discussions about work experience and interviews, and then sent a GitHub repository disguised as an "Interview MVP" to trick developers into running the project.

The malicious repository hid theme/js/auron-core.min.js as a Tailwind plugin. When developers ran the project's development or build commands, a hidden Node.js loader was triggered and deployed multiple payloads designed to steal data.
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
New Tab Page - Desk3 | Plugin
Stay ahead of the game in the cryptocurrency space.