SECURITYTHE HACKER NEWS
North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign
North Korean threat actors have published 108 malicious packages and web browser extensions across npm, Packagist, Go, and Google Chrome as part of the PolinRider campaign. The campaign remains active, with new malicious packages likely to continue appearing.
Mentioned
Related Signal
Adjacent reporting
- New Shai-Hulud malware wave compromises 600 npm packages
- Shai Hulud attack ships signed malicious TanStack, Mistral npm packages
- Mini Shai-Hulud returns, compromising hundreds of npm packages
- 108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users
- Miasma campaign poisons 20-plus npm packages, hunts for developer secrets
- Leaked Shai-Hulud malware fuels new npm infostealer campaign