ON
← Natrag na feed
N. Korean hackers use fake coding tools to steal company secrets: report
KR🏛️ Politikaprije 9 h

N. Korean hackers use fake coding tools to steal company secrets: report

A U.S.-based software security firm, JFrog Security Research, has reported that North Korea-linked hackers used fake coding tools to infiltrate software developers' computers. These malicious packages, disguised as legitimate JavaScript tools, were uploaded to npm, a popular code library. The packages mimicked well-known software like 'rollup-plugin-polyfill-node,' which has over 295,000 weekly downloads. Once activated, they could steal passwords, cryptocurrency wallet data, and sensitive files. The attack method resembles past campaigns by the Lazarus Group, a group associated with North Korean hackers. Researchers noted the sophistication of the attack, including the replication of legitimate project elements like README documentation and repository metadata.

Kako je izvijestila svaka strana

Isti događaj, grupiran prema političkom nagibu medija koji su o njemu izvještavali.

Kako je izvijestila svaka strana

Podržite neovisne vijesti svjesne pristranosti i otključajte društveni puls, glasovanje zajednice i svoj personalizirani feed Za tebe.

Postani podupiratelj

Izvještavanje u svijetu

Isti događaj kako se o njemu izvještavalo u drugim zemljama.

Izvještavanje u svijetu

Podržite neovisne vijesti svjesne pristranosti i otključajte društveni puls, glasovanje zajednice i svoj personalizirani feed Za tebe.

Postani podupiratelj

Provjera tvrdnji

Ključne činjenične tvrdnje i koliko ih izvora potvrđuje odn. osporava.

Provjera tvrdnji

Podržite neovisne vijesti svjesne pristranosti i otključajte društveni puls, glasovanje zajednice i svoj personalizirani feed Za tebe.

Postani podupiratelj

1 izvještaja

The Korea Herald logoThe Korea HeraldNeovisanSredinaČinjenice 85Objektivnost 75prije 9 h
N. Korean hackers use fake coding tools to steal company secrets: report

A U.S.-based software security firm, JFrog Security Research, has reported that North Korea-linked hackers used fake coding tools to infiltrate software developers' computers. These malicious packages, disguised as legitimate JavaScript tools, were uploaded to npm, a popular code library. The packages mimicked well-known software like 'rollup-plugin-polyfill-node,' which has over 295,000 weekly downloads. Once activated, they could steal passwords, cryptocurrency wallet data, and sensitive files. The attack method resembles past campaigns by the Lazarus Group, a group associated with North Korean hackers. Researchers noted the sophistication of the attack, including the replication of legitimate project elements like README documentation and repository metadata.

Procjena pristranosti (Sredina): The article presents a factual report on a cyberattack attributed to North Korea-linked hackers without overtly endorsing or criticizing any political stance. It focuses on the technical aspects of the breach and the attribution to a specific hacking group, maintaining a neutral tone throughout.

Zašto ove ocjene (Činjenice 85 · Objektivnost 75): Factuality is high as the article accurately reports on JFrog's findings about North Korea-linked hackers using fake coding tools. The information aligns with cross-source consensus on this cybersecurity threat. Objectivity is slightly lower due to the article's emphasis on the potential impact of t

Neka vijesti ostanu poštene.

ObjectiveNews financiraju čitatelji i bez oglasa je – pristranost vam pokazujemo, ne skrivamo. Podržite neovisno novinarstvo za 5 €/mjesec.

Postani podupiratelj

Povezane priče