North Korea Targets Developers with AI-Generated npm Malware

Security researchers have uncovered a sneaky malware campaign targeting developers, involving a malicious npm package called @validate-sdk/v2 that's designed to steal sensitive secrets, including crypto-wallet credentials. This tainted package, linked to a North Korean threat actor, was cleverly disguised as a utility SDK for legitimate…

https://osintsights.com/north-korea-targets-developers-with-ai-generated-npm-malware?utm_source=mastodon&utm_medium=social

#NorthKorea #AigeneratedMalware #NpmMalware #Promptmink #SupplyChain