A blockchain developer was targeted by a scam on LinkedIn, resulting in his MetaMask wallet being emptied of over $500. The attacker posed as a recruiter for a web development job and asked the developer to download npm packages from a GitHub repository as part of the interview process. The job posting on Upwork offered $15 to $20 per hour for the task. Despite following the assignment instructions and attending a Google Meet session to explain the solution, the developer’s Ethereum balance was drained a few hours later.
The developer shared his experience on social media, and the community offered insights into the attack. Some hypothesized that the attacker gained access to the developer’s machine via the npm projects, while others suggested potential attack vectors, such as password theft from a web browser with auto-fill enabled or intercepted network traffic.
This was not an isolated incident, as other developers were approached by the same recruiter with similar job offers. The developer warns others to be cautious when receiving job offers on career development platforms and advises completing take-home job exercises on a separate (virtual) machine from their primary device.
The original content was taken from: https://www.bleepingcomputer.com/news/security/blockchain-devs-meta-mask-emptied-by-crypto-stealing-job-exercise/
