According to Odaily Planet Daily, SlowMist Chief Information Security Officer 23pds posted on the X platform that the Lazarus organization is currently contacting targets in the cryptocurrency industry through LinkedIn and stealing employee permissions or assets through malware. First, they contact managers or HR personnel of the target company through LinkedIn, claiming to be looking for a job as a React/blockchain developer. Then, the attacker will claim to be an experienced job seeker and say that he can access his repository and run the relevant code to see how good he is, but in fact the repository contains malicious code snippets.