CrowdStrike Warns of Phishing Campaign Targeting Job Seekers
/ 1 min read
💼🔍 CrowdStrike warns of phishing campaign targeting job seekers with fake offers. The cybersecurity firm has identified a malicious campaign that sends fraudulent job offer emails, impersonating CrowdStrike, to lure candidates into downloading a Monero cryptocurrency miner. Discovered on January 7, 2025, the phishing emails appear to come from a CrowdStrike recruiter and direct recipients to a counterfeit website to download a supposed “employee CRM application.” Once downloaded, the application conducts checks to avoid detection before installing the miner, which runs quietly in the background. CrowdStrike advises job seekers to verify the authenticity of recruiters and be cautious of unusual requests or downloads during the application process. More details and indicators of compromise are available in CrowdStrike’s report.
