Security · 1h ago
North Korean Hackers Hide Malware in SVG Images via Fake Coding Tests
North Korean threat actors are using steganography in SVG image files to deliver OtterCookie malware through fake job postings and coding challenges. The campaign targets developers with a four-stage payload that steals browser credentials and crypto wallet data. The malware is disguised as part of a coding test, exploiting trust in recruitment processes.
Meridian48 take
The use of SVG steganography in fake coding tests shows attackers are adapting to developer workflows, making this a credible threat for tech job seekers.
Read the full reporting
Fake Coding Tests Deliver OtterCookie-Aligned Malware Hidden in SVG Flag Images →
The Hacker News
north-koreamalware