First reported by thehackernews.com
North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign
North Korean Hackers Target Open Source Developers in Supply Chain Attacks
By
admin
1h ago
Source
BackBox.orgNorth Korean Hackers Target Open Source Developers in Supply Chain Attacksbackbox.orgThe PolinRider campaign has compromised more than 100 legitimate open source packages and repositories to deliver a backdoor and information stealer to developers. The post North Korean Hackers Target Open Source Developers in Supply Chain Attacks appeared first on SecurityWeek. SecurityWeek – Read More
You might also wanna read
Supply Chain Attacks on Open-Source Software: Case Study of Malicious Pull Request Attempts
The article discusses recent supply chain attacks on open-source software projects like LiteLLM and axios, with a specific case study of att
North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign
thehackernews.com·2d ago
North Korean Hackers Target Developers via GitHub with Fake Recruitment Lures and Malicious VS Code Projects
Researchers have uncovered UNK_DeadDrop, a North Korea-linked phishing campaign that targets developers on GitHub using fake recruitment and
hendryadrian.com·20d agoMicrosoft uncovers npm supply chain attack stealing cloud and CI/CD credentials via typosquatted packages
Microsoft identified an active supply chain attack (Mini Shai-Hulud campaign) targeting the npm package ecosystem. On May 28, 2026, a threat
microsoft.com·1mo ago
OpenAI confirms employee devices compromised in supply-chain attack, user data unaffected
OpenAI confirmed that two employees' devices were compromised in a supply-chain attack targeting open source projects. The company investiga

September 2025 NPM supply-chain attack compromises popular JavaScript packages
In September 2025, a coordinated software supply-chain attack targeted multiple popular NPM packages in the JavaScript ecosystem. The attack
projectptixiakis.github.io·1mo ago

Comments
Sign in to join the conversation.
No comments yet. Be the first.