North Korea Targets Developers with AI-Generated npm Malware

Security researchers have uncovered a sneaky malware campaign targeting developers, involving a malicious npm package called @validate-sdk/v2 that's designed to steal sensitive secrets, including crypto-wallet credentials. This tainted package, linked to a North Korean threat actor, was cleverly disguised as a utility SDK for legitimate…

https://osintsights.com/north-korea-targets-developers-with-ai-generated-npm-malware?utm_source=mastodon&utm_medium=social

#NorthKorea #AigeneratedMalware #NpmMalware #Promptmink #SupplyChain

NGate Malware Targets Brazil, Trojanizes HandyPay for NFC Data Theft

Security researchers have uncovered a sneaky new Android malware, NGate, that has been hiding in plain sight by infecting a legitimate app called HandyPay, used for NFC data relay, and using AI-generated code to steal payment credentials. This cleverly crafted malware has set its sights on Brazil, putting unsuspecting users at…

https://osintsights.com/ngate-malware-targets-brazil-trojanizes-handypay-for-nfc-data-theft?utm_source=mastodon&utm_medium=social

#NgateMalware #Handypay #NfcDataTheft #AigeneratedMalware #AndroidMalware