North Korean hackers have been exploiting the npm registry to distribute malware targeting crypto developers, according to US cybersecurity firm Socket. The hackers uploaded over 300 malicious code packages disguised as legitimate tools for website and crypto app development. Once downloaded, these packages implant malware designed to steal user passwords, browser data, and crypto wallet keys.
Socket has identified this operation as 'Contagious Interview,' highlighting its sophistication and backing by North Korean state actors. The attackers often pose as tech recruiters to lure blockchain and Web3 developers into downloading the malicious packages, aiming to compromise their systems and access sensitive information.
North Korean Hackers Use npm Registry to Target Crypto Developers
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.