T1547.001 6
- Inside the GitHub Infrastructure Powering North Korea's Contagious Interview npm Attacks
- Surveillance Malware Hidden in npm and PyPI Packages Targets Developers with Keyloggers, Webcam Capture, and Credential Theft
- North Korean APT Lazarus Targets Developers with Malicious npm Package
- Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
- Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
- Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets