Cybersecurity researchers have disclosed a new iteration of
the ongoing Contagious Interview campaign, where the North Korean
threat actors have published a set of 26 malicious packages to the
npm registry. The packages masquerade as developer tools, but
contain functionality to extract the actual command-and-control
(C2) by using seemingly harmless Pastebin content as a dead drop
resolver and
Read more https://thehackernews.com/2026/03/north-korean-hackers-publish-26-npm.html
