##

The Lazarus Group, a North Korean hacking group, launched a cyberattack dubbed "Operation 99" targeting Web3 and cryptocurrency software developers. The attackers, posing as recruiters on platforms like LinkedIn, lured developers into participating in fake project testing and code reviews. This led developers to clone GitLab repositories containing malicious code, implanting modular malware onto their systems. These malware can steal valuable data like passwords, API keys, cryptocurrency wallet information, and maintain connections through highly obfuscated command and control (C2) servers to maximize stealth.