"North Korean Hackers Suspected in New Wave of Malicious npm Packages"

The npm package registry has been hit in yet another highly targeted attack campaign aimed at luring developers to download malicious modules. According to the software supply chain security company Phylum, the activity resembles a previous attack wave discovered in June, which has since been attributed to North Korean threat actors. Nine packages have been identified as uploaded to npm between August 9 and 12, 2023. Due to the sophistication of the attack and the small number of affected packages, it is suspected that this is yet another highly targeted attack, likely involving social engineering to convince targets to install these packages, according to Phylum. This article continues to discuss the new attack campaign targeting the npm package registry.

THN reports "North Korean Hackers Suspected in New Wave of Malicious npm Packages"