ON
← Volver al feed
N. Korean hackers use fake coding tools to steal company secrets: report
KR🏛️ Políticahace 9 h

N. Korean hackers use fake coding tools to steal company secrets: report

A U.S.-based software security firm, JFrog Security Research, has reported that North Korea-linked hackers used fake coding tools to infiltrate software developers' computers. These malicious packages, disguised as legitimate JavaScript tools, were uploaded to npm, a popular code library. The packages mimicked well-known software like 'rollup-plugin-polyfill-node,' which has over 295,000 weekly downloads. Once activated, they could steal passwords, cryptocurrency wallet data, and sensitive files. The attack method resembles past campaigns by the Lazarus Group, a group associated with North Korean hackers. Researchers noted the sophistication of the attack, including the replication of legitimate project elements like README documentation and repository metadata.

Cómo lo cubrió cada lado

El mismo suceso, agrupado por la inclinación política de los medios que lo cubren.

Cómo lo cubrió cada lado

Apoya noticias independientes y conscientes del sesgo y desbloquea el pulso social, el voto de la comunidad y tu feed Para ti personalizado.

Hazte suscriptor

Cobertura en el mundo

El mismo suceso según se informó en otros países.

Cobertura en el mundo

Apoya noticias independientes y conscientes del sesgo y desbloquea el pulso social, el voto de la comunidad y tu feed Para ti personalizado.

Hazte suscriptor

Verificación de afirmaciones

Las principales afirmaciones fácticas y cuántas fuentes las respaldan o las rebaten.

Verificación de afirmaciones

Apoya noticias independientes y conscientes del sesgo y desbloquea el pulso social, el voto de la comunidad y tu feed Para ti personalizado.

Hazte suscriptor

1 informaciones

The Korea Herald logoThe Korea HeraldIndependienteCentroVeracidad 85Objetividad 75hace 9 h
N. Korean hackers use fake coding tools to steal company secrets: report

A U.S.-based software security firm, JFrog Security Research, has reported that North Korea-linked hackers used fake coding tools to infiltrate software developers' computers. These malicious packages, disguised as legitimate JavaScript tools, were uploaded to npm, a popular code library. The packages mimicked well-known software like 'rollup-plugin-polyfill-node,' which has over 295,000 weekly downloads. Once activated, they could steal passwords, cryptocurrency wallet data, and sensitive files. The attack method resembles past campaigns by the Lazarus Group, a group associated with North Korean hackers. Researchers noted the sophistication of the attack, including the replication of legitimate project elements like README documentation and repository metadata.

Lectura del sesgo (Centro): The article presents a factual report on a cyberattack attributed to North Korea-linked hackers without overtly endorsing or criticizing any political stance. It focuses on the technical aspects of the breach and the attribution to a specific hacking group, maintaining a neutral tone throughout.

Por qué estas puntuaciones (Veracidad 85 · Objetividad 75): Factuality is high as the article accurately reports on JFrog's findings about North Korea-linked hackers using fake coding tools. The information aligns with cross-source consensus on this cybersecurity threat. Objectivity is slightly lower due to the article's emphasis on the potential impact of t

Mantengamos las noticias honestas.

ObjectiveNews se financia con los lectores y no tiene anuncios: te mostramos el sesgo en lugar de ocultarlo. Apoya el periodismo independiente por 5 €/mes.

Hazte suscriptor

Historias relacionadas