PANews|Jul 18, 2026 07:31
[SlowMist: Detected a Fake Recruitment Campaign Impersonating Headhunters to Deliver Malicious GitHub Code]
According to monitoring by SlowMist, MistEye recently detected a malicious campaign targeting developers. The attackers used fake Web3 job postings to carry out their attacks. Posing as recruiters on LinkedIn, they built trust by discussing work experience and interview processes, then sent a GitHub repository disguised as an 'interview MVP' to lure developers into running the project. Analysis revealed that the malicious repository concealed `theme/js/auron-core.min.js` as a Tailwind plugin.
Share To
Timeline
HotFlash
APP
X
Telegram
CopyLink