Wu Shuo learned that according to the SlowMist team, there have been frequent phishing attacks on blockchain engineers on LinkedIn platform recently. User Swader disclosed a case where an attacker claiming to be the project owner deceived developer Bruno Skvorc through a lengthy project introduction (involving the Socifi game and staking platform) and sent a malicious Bitbucket code repository link. The SlowMist team found through analysis that the encrypted payload is hidden in the code, triggered through server. js, and after running, it connects to the C2 server to download test. js and. npl Trojans, stealing system data, browser plugin wallets, passwords, etc., with the goal of stealing encrypted assets. Users are advised to be cautious of suspicious job postings, and companies should strengthen phishing protection and employee training to reduce risks. http://(wublock123.com)/index.php? m=content&c=index&a=show&catid=6&id=39517