New Lazarus Group Scam Targets Crypto Jobseekers

The Lazarus Group, notorious for its $1.5 billion ByBit crypto heist, has launched a new campaign called ClickFake Interview, targeting cryptocurrency professionals through fake job interviews. Using fraudulent websites built with ReactJS, victims are tricked into downloading malware under the guise of fixing camera access issues. Depending on the operating system, different malware strains—such as FrostyFerret and GolangGhost—are deployed to steal data and enable remote control. Experts warn that targeting non-technical roles makes these scams especially dangerous and underreported, stressing the need for heightened vigilance and verification during job application processes in the crypto sector.