Hackers Distributing ModStealer via Fake Job Ads

ed

Security researchers warn that ModStealer malware is being distributed through fake recruitment ads targeting Web3 developers.

️ Once installed, ModStealer:

Embeds in the system as a hidden process

Captures clipboard data + screenshots

Executes remote commands on victim devices

Hacken’s Stephen Ajayi warns developers to:

Verify recruiters/domains before downloading test tasks

Open assignments only in disposable VMs with no wallets or keys

Keep dev environments (“dev box”) completely separate from wallet environments (“wallet box”)