Loading...
[North Korean Hackers Exploit Open-Source Platforms to Target Cryptocurrency Developers] U.S. cybersecurity company Socket has revealed that a North Korean hacker group is spreading malware through the globally used software repository npm registry. Research indicates that over 300 malicious code packages have been uploaded to the platform, disguised as harmless tools widely used in website and cryptocurrency application development. Once downloaded, these codes implant malware to steal user passwords, browser data, and cryptocurrency wallet keys. Socket has named this attack operation 'Contagious Interview' and pointed out that it is a sophisticated attack carried out by a North Korean state-backed hacker group, targeting blockchain and Web3 developers. Hackers often pose as technical recruiters to lure victims.