WageMole is a threat actor attributed to KP, also known as Famous Chollima, UNC5267, Wagemole. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does WageMole exploit?

WageMole is known to exploit 4 CVEs. View the full list on the Strobes VI threat actor profile page.

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001

WageMole

Also known as: Famous Chollima, UNC5267, Wagemole, Nickel Tapestry, Storm-1877, Void Dokkaebi, WaterPlum, PurpleBravo, NICKEL TAPESTRY, Contagious Interview Actors, North Korean Threat Actors, DPRK Job Lure, Storm-0287, CL-STA-0241, Contagious Interview, BlockNovas LLC, Angeloper Agency, SoftGlide LLC, CL-STA-0240, DeceptiveDevelopment, DEV#POPPER, UNC5342, TAG-120, Tenacious Pungsan, Jasper Sleet, Gwisin Gang, TAG-121

KPCyber Espionage

Exploited CVEs

Overview

Contagious Interview is a North Korea–aligned threat group active since 2023. The group conducts both cyberespionage and financially motivated operations, including the theft of cryptocurrency and user credentials. Contagious Interview targets Windows, Linux, and macOS systems, with a particular focus on individuals engaged in software development and cryptocurrency-related activities.

Exploited Vulnerabilities

CVE ID	Action
CVE-2017-11774	View Details