1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • That NFT job offer is probably malware

    From TechnologyDaily@1337:1/100 to All on Thu May 5 14:30:04 2022
    That NFT job offer is probably malware

    Date:
    Thu, 05 May 2022 13:12:18 +0000

    Description:
    Newly discovered campaign sees artists receive a job offer with an NFT project.

    FULL STORY ======================================================================

    Unknown threat actors have been discovered targeting graphic designers and artists with infostealer trojans, security researchers have revealed.

    Artists from popular sites such as DeviantArt and Pixiv have been getting multiple messages claiming to offer potentially lucrative job roles. However, the job offer is just a disguise, as the senders true goal is to distribute
    an information-stealing trojan with a good chance of not being spotted by antivirus solutions.

    Info-stealers usually grab passwords and other identity -related data stored in browsers, as well as cryptocurrency wallets, credit card data, and
    similar.

    Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022 . Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at the end of this survey to get the bookazine, worth $10.99/10.99. A job offer, or trojan?

    In the job offer, the artist is invited to work on an NFT project. NFTs, or non-fungible tokens, in this context, are pieces of art stored on the blockchain. Lately, theyve been enjoying enormous popularity and dizzying valuations (some are worth tens of millions of dollars).

    In the offer, the artist will be told whats expected of them, will be asked for their CV or resume, and will be given a link with examples of previous
    NFT work by the project managers. That link, for which the attackers say is essentially the projects style guide, leads to a password-protected RAR archive named 'Cyberpunk Ape Exemples (pass 111).rar.

    The archive does carry a few low-res images, but also carries a well-hidden .EXE file. At first glance, it appears to be a .GIF file, but is, in fact, malware. Read more

    What is an NFT? Non-fungible tokens explained, and why you shouldnt dismiss
    this fad


    Several huge NFT Discords hacked by scam attacks


    NFTs are seriously hot right now, but were falling into a familiar trap

    While infostealers can do all kinds of damage, and steal all kinds of information, in this context its safe to assume that the attackers could be after the artists cryptocurrency wallets, especially if theyve been involved in NFT projects in the past. Crypto projects usually pay their team members, employees, and collaborators, in cryptocurrencies.

    Cyberpunk Ape project leaders took to Twitter to distance themselves from
    this campaign, saying the job offer is not real.

    Don't respond. Don't click the link. Report the people who are doing this on the platform they contact you on, the Twitter post reads. Check out the best firewalls around

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/that-nft-job-offer-is-probably-malware/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)