Severity: HIGH

Proofpoint researchers have identified two malicious campaigns linked to the North Korean threat group Contagious Interview (aka Famous Chollima). These campaigns leverage phishing lures themed around developer job recruitment or code reviews. The attackers are increasingly turning legitimate developer tools and platforms into vectors for malware delivery, aiming to compromise developers and gain access to their organizations’ intellectual property and systems.

Source: The Hacker News