all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Bogus npm Packages Used to Trick Software Developers into Installing Malware

Add to bookmarks
April 27, 2024, 5:12 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

An ongoing social engineering campaign is targeting software developers with bogus npm packages under the guise of a job interview to trick them into downloading a Python backdoor.
Cybersecurity firm Securonix is tracking the activity under the name DEV#POPPER, linking it to North Korean threat actors.
"During these fraudulent interviews, the developers are often asked

backdoor bogus campaign cybersecurity dev developers engineering fraudulent interview job malware name north north korean npm packages python python backdoor securonix social social engineering software software developers targeting threat threat actors tracking trick under

Visit resource

More from thehackernews.com / The Hacker News

A SaaS Security Challenge: Getting Permissions All in One Place 11 hours ago | thehackernews.com
access all in apps base +16
New Spectre-Style 'Pathfinder' Attack Targets Intel CPU, Leak Encryption Keys and Data 11 hours ago | thehackernews.com
academics advanced advanced encryption aes +30
The Fundamentals of Cloud Security Stress Testing 14 hours ago | thehackernews.com
assets attackers cloud cloud security +17
Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version 14 hours ago | thehackernews.com
aim analysis anti-analysis bypass +19
Hackers Exploiting LiteSpeed Cache Bug to Gain Full Control of WordPress Sites 18 hours ago | thehackernews.com
accounts actively exploited admin bogus +25
Russian Hacker Dmitry Khoroshev Unmasked as LockBit Ransomware Administrator 1 day, 9 hours ago | thehackernews.com
addition administrator agency crime +17
APT42 Hackers Pose as Journalists to Harvest Credentials and Access Cloud Data 1 day, 12 hours ago | thehackernews.com
academia access activists apt42 +32
China-Linked Hackers Used ROOTROT Webshell in MITRE Network Intrusion 1 day, 12 hours ago | thehackernews.com
attack back china china-linked hackers +16
New Case Study: The Malicious Comment 1 day, 14 hours ago | thehackernews.com
case code comments discover +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Operations Engineer

@ Nokia | India
View on infosec-jobs.com

Machine Learning DevSecOps Engineer

@ Ford Motor Company | Mexico City, MEX, Mexico
View on infosec-jobs.com

Cybersecurity Defense Analyst 2

@ IDEMIA | Casablanca, MA, 20270
View on infosec-jobs.com

Executive, IT Security

@ CIMB | Cambodia
View on infosec-jobs.com

Cloud Security Architect - Microsoft (m/w/d)

@ Bertelsmann | Gütersloh, NW, DE, 33333
View on infosec-jobs.com

Senior Consultant, Cybersecurity - SOC

@ NielsenIQ | Chennai, India
View on infosec-jobs.com
View more jobs