A hacker group poses as recruiters on V2EX to spread malware and steal candidates' cryptocurrency

According to a report by Jinse Finance, as disclosed by SlowMist’s Yu Xian, a hacker group has been posing as recruiters on the V2EX platform, posting fake job listings and luring candidates with attractive benefits. The group instructs interviewees to use a pre-prepared malicious code repository as a project template for developing web pages. Once the candidate downloads, debugs, and executes the relevant code, their computer becomes infected with malware, potentially resulting in the theft of cryptocurrency assets and various account credentials. This attack method exploits job seekers’ trust in technical interviews, using seemingly legitimate development tasks to carry out cyberattacks. Job seekers are advised to remain vigilant during technical interviews, avoid running code from unknown sources on personal devices, and consider using virtual machines or sandbox environments for testing.