News

Infosecurity Magazine3d
North Korean Actors Expand Contagious Interview Campaign with New Malware Loader
Socket has identified a new malware loader called XORIndex incorporated into malicious packages published to the npm registry ...
North Korean hackers release malware-ridden packages into npm registry
Uploading malicious code to npm is just a setup. The real attack most likely happens elsewhere - on LinkedIn, Telegram, or ...
The Hacker News3d
North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign
North Korean hackers continue attacking open-source software via npm packages. 67 new malicious packages with XORIndex Loader ...
GovInfoSecurity3d
North Korea Floods npm Registry with Malware
North Korean threat actors escalated their software supply chain attacks by uploading 67 new malicious packages to the npm ...
North Korean XORIndex malware hidden in 67 malicious npm packages
North Korean threat actors planted 67 malicious packages in the Node Package Manager (npm) online repository to deliver a new ...
JD Supra2mon
North Korea-linked threat actors utilize falsified companies and job ...
A threat actor group with ties to the Democratic People’s Republic of Korea (“North Korea”) called Contagious Interview is using front companies to spread malware through fake job interviews.
Bleeping Computer23d
New wave of ‘fake interviews’ use 35 npm packages to spread malware
A new wave of North Korea's 'Contagious Interview' campaign is targeting job seekers with malicious npm packages that infect dev's devices with infostealers and backdoors. The packages were ...
Hosted on MSN10mon
North Korean hackers target job seekers with fake interviews - MSN
The campaign was labeled ‘Contagious Interview’ after being discovered by analysts. Discovered by cyber security company ‘Group-IB’, ...