Fake 'interview' repos lure Next.js devs into running secret-stealing malware

Come for the coding test, stay for the C2 traffic Next.js developers are once again in the crosshairs as hackers seed ...

Fake Next.js job interview tests backdoor developer's devices

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...

North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.
The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

While the Windows maker did not attribute the activity to a specific threat actor, the use of VS Code tasks and Vercel ...
Dark Reading

Malicious Next.js Repos Target Developers Via Fake Job Interviews

Linked to North Korean fake job-recruitment campaigns, the poisoned repositories are aimed at establishing persistent C2 ...

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...

Forget the STEM safety net. Peter Thiel warns AI is a bigger threat to technical roles than to creative thinkers

A new LinkedIn report supports some of the billionaire’s predictions, showing that job postings mentioning “storytellers” ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
The Register-Herald

Iran's top diplomat says he 'probably' will meet with US envoy on Thursday in Geneva

Iran’s top diplomat says he “probably” will meet with U.S. envoy Steve Witkoff on Thursday in Geneva after two rounds of ...

Quebec’s advance-request MAID program offers a complicated example for other jurisdictions

Canada is considered to have some of the most permissive MAID laws globally, prompting fierce debate over who should qualify for a physician-assisted death. As the law stands, patients qualify if ...
Opinion

Canada must develop its own trusted-traveller program

None of this requires abandoning NEXUS. A Canada-only program could co-exist alongside it. Those who want seamless cross-border travel with the United States could continue to apply for NEXUS. But ...