North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

Updated on March 2, 2026

Cybersecurity researchers have disclosed a new iteration of the ongoing Contagious Interview campaign, where the North Korean threat actors have published a set of 26 malicious packages to the npm registry.
The packages masquerade as developer tools, but contain functionality to extract the actual command-and-control (C2) by using seemingly harmless Pastebin content as a dead drop resolver and…

Read the rest of the story at Read More

Source: The Hacker News

August 8, 2025 Uncategorized

RubyGems, PyPI Hit by Malicious Packages...

December 11, 2024 Uncategorized

Ivanti Issues Critical Security Updates ...

October 1, 2024 Uncategorized

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

Related posts

RubyGems, PyPI Hit by Malicious Packages...

Ivanti Issues Critical Security Updates ...

AI-Powered Rhadamanthys Stealer Targets ...

Leave a Comment Cancel reply

Recent News

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Google Develops Merkle Tree Certificates to Enable Quantum-Resistant HTTPS in Chrome

⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More

How to Protect Your SaaS from Bot Attacks with SafeLine WAF

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket

Thousands of Public Google Cloud API Keys Exposed with Gemini Access After API Enablement

Pentagon Designates Anthropic Supply Chain Risk Over AI Military Dispute

DoJ Seizes $61 Million in Tether Linked to Pig Butchering Crypto Scams