Security News > 2024 > February > North Korean Hackers Targeting Developers with Malicious npm Packages
2024-02-26 12:27
A set of fake npm packages discovered on the Node.js repository has been found to share ties with North Korean state-sponsored actors, new findings from Phylum show. The packages are named execution-time-async, data-time-utils, login-time-utils, mongodb-connection-utils, and mongodb-execution-utils. One of the packages in question, execution-time-async, masquerades as its legitimate
News URL
https://thehackernews.com/2024/02/north-korean-hackers-targeting.html
Related news
- North Korean Hackers Target Freelance Developers in Job Scam to Deploy Malware (source)
- Malicious npm packages target Ethereum developers' private keys (source)
- Cybercriminals Target Ethereum Developers with Fake Hardhat npm Packages (source)
- Hackers Deploy Malicious npm Packages to Steal Solana Wallet Keys via Gmail SMTP (source)
- North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS (source)
- North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack (source)
- North Korea targets crypto developers via NPM supply chain attack (source)
- North Korean hackers spotted using ClickFix tactic to deliver malware (source)