AI-Assisted Lazarus Campaign Targets Developers With Backdoored Coding Challenges

The Lazarus Group, a North Korean state-sponsored threat actor, is employing an AI-assisted campaign to target software developers with backdoored coding challenges, aiming to steal cryptocurrency and NFTs. This sophisticated operation utilizes generative AI tools for creating fake company fronts and malware, and exploits VSCode’s features to execute malicious code upon project opening.