ON
← Torna al feed
N. Korean hackers use fake coding tools to steal company secrets: report
KR🏛️ Politica9 h fa

N. Korean hackers use fake coding tools to steal company secrets: report

A U.S.-based software security firm, JFrog Security Research, has reported that North Korea-linked hackers used fake coding tools to infiltrate software developers' computers. These malicious packages, disguised as legitimate JavaScript tools, were uploaded to npm, a popular code library. The packages mimicked well-known software like 'rollup-plugin-polyfill-node,' which has over 295,000 weekly downloads. Once activated, they could steal passwords, cryptocurrency wallet data, and sensitive files. The attack method resembles past campaigns by the Lazarus Group, a group associated with North Korean hackers. Researchers noted the sophistication of the attack, including the replication of legitimate project elements like README documentation and repository metadata.

Come l’ha coperta ogni schieramento

Lo stesso evento, raggruppato per l’orientamento politico delle testate che ne parlano.

Come l’ha coperta ogni schieramento

Sostieni notizie indipendenti e consapevoli del bias e sblocca il polso social, il voto della comunità e il tuo feed Per te personalizzato.

Diventa sostenitore

Nel mondo

Lo stesso evento come riportato in altri paesi.

Nel mondo

Sostieni notizie indipendenti e consapevoli del bias e sblocca il polso social, il voto della comunità e il tuo feed Per te personalizzato.

Diventa sostenitore

Verifica delle affermazioni

Le principali affermazioni fattuali e quante fonti le sostengono o le contestano.

Verifica delle affermazioni

Sostieni notizie indipendenti e consapevoli del bias e sblocca il polso social, il voto della comunità e il tuo feed Per te personalizzato.

Diventa sostenitore

1 servizi

The Korea Herald logoThe Korea HeraldIndipendenteCentroFattualità 85Obiettività 759 h fa
N. Korean hackers use fake coding tools to steal company secrets: report

A U.S.-based software security firm, JFrog Security Research, has reported that North Korea-linked hackers used fake coding tools to infiltrate software developers' computers. These malicious packages, disguised as legitimate JavaScript tools, were uploaded to npm, a popular code library. The packages mimicked well-known software like 'rollup-plugin-polyfill-node,' which has over 295,000 weekly downloads. Once activated, they could steal passwords, cryptocurrency wallet data, and sensitive files. The attack method resembles past campaigns by the Lazarus Group, a group associated with North Korean hackers. Researchers noted the sophistication of the attack, including the replication of legitimate project elements like README documentation and repository metadata.

Lettura del bias (Centro): The article presents a factual report on a cyberattack attributed to North Korea-linked hackers without overtly endorsing or criticizing any political stance. It focuses on the technical aspects of the breach and the attribution to a specific hacking group, maintaining a neutral tone throughout.

Perché questi punteggi (Fattualità 85 · Obiettività 75): Factuality is high as the article accurately reports on JFrog's findings about North Korea-linked hackers using fake coding tools. The information aligns with cross-source consensus on this cybersecurity threat. Objectivity is slightly lower due to the article's emphasis on the potential impact of t

Manteniamo le notizie oneste.

ObjectiveNews è finanziato dai lettori e senza pubblicità: ti mostriamo il bias invece di nasconderlo. Sostieni il giornalismo indipendente per 5 €/mese.

Diventa sostenitore

Storie correlate