Crypto hackers are using a new method to target job seekers, tricking victims into downloading malicious software disguised as a fix for camera and microphone issues. This malware can give attackers access to victims’ devices, drain their crypto wallets, or cause significant damage.
How the Scam Works
According to blockchain investigator Taylor Monahan, also known as Tay on X, hackers pose as recruiters from prominent crypto firms offering lucrative roles with salaries ranging from $200,000 to $350,000. The scam often begins on platforms like LinkedIn, where victims are approached with job offers for positions such as business development managers, analysts, or researchers at reputable firms like Gemini or Kraken.
Here’s how the process unfolds:
- Initial Contact: The attackers reach out via LinkedIn, freelancer websites, Telegram, or Discord.
- Interview Process: Victims are sent a series of detailed written interview questions about crypto trends, industry strategy, or regional market expansion plans.
- Video Interview Setup: Hackers request a final video interview through a platform called “Willo | Video Interviewing.” Victims encounter issues granting microphone and camera access, which the hackers claim is caused by a cache problem.
- Malware Installation: To “fix” the problem, victims are instructed to follow steps that lead them to download malware. This prompts Chrome to “update/restart,” but instead installs malicious software that gives attackers backdoor access to the victim’s computer.
Impact of the Attack
Once the malware is installed, attackers can potentially:
- Access sensitive files on the victim’s device.
- Drain cryptocurrency wallets linked to the victim.
- Exploit personal and financial information for further scams.
Monahan warns that this malware works across all major operating systems, including Mac, Windows, and Linux.
Fake Job Scams Are on the Rise
Hackers are taking advantage of professional networking platforms like LinkedIn to make their scams seem legitimate. Victims are lured in with high-paying roles at big-name crypto companies, creating a false sense of security.
Interview questions include topics like emerging crypto trends or how to expand partnerships in regions like Southeast Asia or Latin America on a tight budget—designed to appear credible and engaging.
Protect Yourself
Taylor Monahan advises anyone who suspects they’ve been exposed to such malware to immediately wipe their computer and start fresh. She also recommends staying vigilant when engaging with unexpected job offers:
- Be Skeptical: Approach unsolicited job offers with caution, especially those offering unusually high salaries.
- Verify Sources: Double-check the recruiter’s identity by contacting the company directly.
- Avoid Downloads: Do not follow troubleshooting instructions for software issues provided by unknown individuals.
- Secure Devices: Use robust antivirus software and keep your system updated.
The best defense against these scams is awareness. With hackers refining their tactics, job seekers must remain cautious and question anything that seems too good to be true.
