T1105 12
- Malicious Go "crypto" Module Steals Passwords and Deploys Rekoobe Backdoor
- PyPI Package Impersonates SymPy to Deliver Cryptomining Malware
- Inside the GitHub Infrastructure Powering North Korea's Contagious Interview npm Attacks
- North Korea's Contagious Interview Campaign Escalates: 338 Malicious npm Packages, 50,000 Downloads
- Contagious Interview Campaign Escalates With 67 Malicious npm Packages and New Malware Loader
- Another Wave: North Korean Contagious Interview Campaign Drops 35 New Malicious npm Packages
- Lazarus Expands Malicious npm Campaign: 11 New Packages Add Malware Loaders and Bitbucket Payloads
- Black Basta's Dependency Confusion Ambitions and Ransomware in Open Source Ecosystems
- Lazarus Strikes npm Again with New Wave of Malicious Packages
- North Korean APT Lazarus Targets Developers with Malicious npm Package
- Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
- Malicious Maven Package Impersonating 'XZ for Java' Library Introduces Backdoor Allowing Remote Code Execution