N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust

North Korea-linked threat actors operating under the campaign 'Contagious Interview' have launched a sophisticated supply chain attack, publishing over 1,700 malicious packages across multiple package registries including npm, PyPI, Go, and Rust. The malware loaders impersonate legitimate developer tooling to compromise systems and exfiltrate data. This coordinated campaign expands the threat actor's established tactics beyond previous targets. Organizations should audit their dependency trees, implement package verification controls, and monitor for suspicious developer tool installations to mitigate supply chain risks.

The North Korea-linked persistent campaign known as Contagious Interview has spread its tentacles by publishing malicious packages targeting the Go, Rust, and PHP ecosystems. "The threat actor's packages were designed to impersonate legitimate developer tooling [...], while quietly functioning as malware loaders, extending Contagious Interview’s established playbook into a coordinated

North Korea-linked threat actors operating under the campaign 'Contagious Interview' have launched a sophisticated supply chain attack, publishing over 1,700 malicious packages across multiple package registries including npm, PyPI, Go, and Rust. The malware loaders impersonate legitimate developer tooling to compromise systems and exfiltrate data. This coordinated campaign expands the threat actor's established tactics beyond previous targets. Organizations should audit their dependency trees, implement package verification controls, and monitor for suspicious developer tool installations to mitigate supply chain risks. The North Korea-linked persistent campaign known as Contagious Interview has spread its tentacles by publishing malicious packages targeting the Go, Rust, and PHP ecosystems. "The threat actor's packages were designed to impersonate legitimate developer tooling [...], while quietly functioning as malware loaders, extending Contagious Interview’s established playbook into a coordinated The North Korea-linked persistent campaign known as Contagious Interview has spread its tentacles by publishing malicious packages targeting the Go, Rust, and PHP ecosystems. "The threat actor's packages were designed to impersonate legitimate developer tooling [...], while quietly functioning as malware loaders, extending Contagious Interview’s established playbook into a coordinated