The North Korean state-sponsored hacking group Lazarus has been implicated in a sophisticated supply chain attack targeting developers through malicious Node Package Manager (NPM) packages. Security researchers have identified the package, postcss-optimizer, as a key vector for delivering malware to unsuspecting victims. The malicious package, postcss-optimizer, masquerades as a legitimate library, mimicking the widely used […]
The post North Korean APT Lazarus Compromises Developers via Malicious NPM Packages appeared first on Cyber Security News.
This article has been indexed from Cyber Security News