Fake Web3 Recruitment Campaign Sends Malicious GitHub Code to Developers
2026-07-18 15:31

Woofun AI reports that SlowMist's MistEye identified a malicious campaign targeting developers through impersonated Web3 recruitment efforts. Attackers established trust on LinkedIn by discussing professional experience before sending GitHub repositories labeled as "MVP interview projects" to induce code execution. Technical analysis revealed the repository conceals a malicious script, theme/js/auron-core.min.js, disguised as a Tailwind plugin.

Disclaimer: Views are the author's own and do not represent the platform. Do not reproduce without permission. Content is for reference only, not investment advice. Trade at your own risk.
Tags:
SlowMist
MistEye
GitHub
Tailwind
Odaily
Share:
back