Advertisement
CRITICAL
Supply Chain
North Korean Hackers Distribute 1,700 Malicious Packages via npm and PyPI
North Korean threat actors expand the Contagious Interview campaign, deploying 1,700 malicious packages across npm, PyPI, Go, and Rust ecosystems.
Runtime Rebel Intel
3 min read·Apr 8, 2026
HIGH
Supply Chain
North Korean Malicious npm Packages: Detecting Contagious Interview
North Korean actors published 26 malicious npm packages using Pastebin as a C2 dead drop resolver in a new Contagious Interview campaign iteration.
Runtime Rebel Intel
3 min read·Mar 2, 2026