News

North Korean hackers release malware-ridden packages into npm registry
Security researchers spotted 67 malicious packages on npm The packages are part of the Contagious Interview campaign They are ...
Infosecurity Magazine1d
North Korean Actors Expand Contagious Interview Campaign with New Malware Loader
Socket has identified a new malware loader called XORIndex incorporated into malicious packages published to the npm registry ...
North Korean XORIndex malware hidden in 67 malicious npm packages
North Korean threat actors planted 67 malicious packages in the Node Package Manager (npm) online repository to deliver a new ...
The Hacker News1d
North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign
North Korean hackers continue attacking open-source software via npm packages. 67 new malicious packages with XORIndex Loader ...
JD Supra2mon
North Korea-linked threat actors utilize falsified companies and job ...
A threat actor group with ties to the Democratic People’s Republic of Korea (“North Korea”) called Contagious Interview is using front companies to spread malware through fake job interviews.
Bleeping Computer21d
New wave of ‘fake interviews’ use 35 npm packages to spread malware
A new wave of North Korea's 'Contagious Interview' campaign is targeting job seekers with malicious npm packages that infect dev's devices with infostealers and backdoors. The packages were ...
Hosted on MSN10mon
North Korean hackers target job seekers with fake interviews - MSN
The campaign was labeled ‘Contagious Interview’ after being discovered by analysts. Discovered by cyber security company ‘Group-IB’, ...