ON
← Nazaj na pregled
N. Korean hackers use fake coding tools to steal company secrets: report
KR🏛️ Politikapred 9 urami

N. Korean hackers use fake coding tools to steal company secrets: report

A U.S.-based software security firm, JFrog Security Research, has reported that North Korea-linked hackers used fake coding tools to infiltrate software developers' computers. These malicious packages, disguised as legitimate JavaScript tools, were uploaded to npm, a popular code library. The packages mimicked well-known software like 'rollup-plugin-polyfill-node,' which has over 295,000 weekly downloads. Once activated, they could steal passwords, cryptocurrency wallet data, and sensitive files. The attack method resembles past campaigns by the Lazarus Group, a group associated with North Korean hackers. Researchers noted the sophistication of the attack, including the replication of legitimate project elements like README documentation and repository metadata.

Kako je poročala vsaka stran

Isti dogodek, razvrščen po političnem nagibu medijev, ki so o njem poročali.

Kako je poročala vsaka stran

Podprite neodvisne novice z zavedanjem pristranskosti in odklenite družbeni utrip, glasovanje skupnosti in svoj prilagojen pregled Zame.

Postani podpornik

Poročanje po svetu

Isti dogodek, kot so ga poročali v drugih državah.

Poročanje po svetu

Podprite neodvisne novice z zavedanjem pristranskosti in odklenite družbeni utrip, glasovanje skupnosti in svoj prilagojen pregled Zame.

Postani podpornik

Preverjanje trditev

Ključne dejanske trditve in koliko virov jih potrjuje oz. zavrača.

Preverjanje trditev

Podprite neodvisne novice z zavedanjem pristranskosti in odklenite družbeni utrip, glasovanje skupnosti in svoj prilagojen pregled Zame.

Postani podpornik

1 poročil

The Korea Herald logoThe Korea HeraldNeodvisenSredinaDejstva 85Objektivnost 75pred 9 urami
N. Korean hackers use fake coding tools to steal company secrets: report

A U.S.-based software security firm, JFrog Security Research, has reported that North Korea-linked hackers used fake coding tools to infiltrate software developers' computers. These malicious packages, disguised as legitimate JavaScript tools, were uploaded to npm, a popular code library. The packages mimicked well-known software like 'rollup-plugin-polyfill-node,' which has over 295,000 weekly downloads. Once activated, they could steal passwords, cryptocurrency wallet data, and sensitive files. The attack method resembles past campaigns by the Lazarus Group, a group associated with North Korean hackers. Researchers noted the sophistication of the attack, including the replication of legitimate project elements like README documentation and repository metadata.

Ocena pristranskosti (Sredina): The article presents a factual report on a cyberattack attributed to North Korea-linked hackers without overtly endorsing or criticizing any political stance. It focuses on the technical aspects of the breach and the attribution to a specific hacking group, maintaining a neutral tone throughout.

Zakaj te ocene (Dejstva 85 · Objektivnost 75): Factuality is high as the article accurately reports on JFrog's findings about North Korea-linked hackers using fake coding tools. The information aligns with cross-source consensus on this cybersecurity threat. Objectivity is slightly lower due to the article's emphasis on the potential impact of t

Ohranimo novice poštene.

ObjectiveNews financirajo bralci in je brez oglasov – pristranskost vam pokažemo, ne skrijemo. Podprite neodvisno novinarstvo za 5 €/mesec.

Postani podpornik

Povezane zgodbe