Bogus npm Packages Used to Trick Software Developers into Installing Malware


An ongoing social engineering campaign is targeting software developers with bogus npm packages under the guise of a job interview to trick them into downloading a Python backdoor.
Cybersecurity firm Securonix is tracking the activity under the name DEV#POPPER, linking it to North Korean threat actors.
“During these fraudulent interviews, the developers are often asked

[ad_2]





2024-04-27 05:12:00


0 Comments

Leave a Reply

Avatar placeholder

Your email address will not be published. Required fields are marked *