> TritonInfoSec News
Home / Mar 03, 2026 / Story
1
#7 The Hacker News general March 02, 2026 at 08:44 UTC

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

By [email protected] (The Hacker News)

AI Summary

North Korean threat actors published 26 malicious npm packages disguised as developer tools that used Pastebin content as a dead drop resolver for cross-platform RAT command and control as part of the ongoing Contagious Interview campaign. The supply chain attack targets developers and demonstrates sophisticated use of legitimate platforms for C2 infrastructure.

Read full article → https://thehackernews.com/2026/03/north-korean-hac…

Relevance score: 81.0/100

# More from March 03

  1. 1
    Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities CyberScoop
  2. 2
    CyberStrikeAI tool adopted by hackers for AI-powered attacks BleepingComputer
  3. 3
    30 Alleged Members of 'The Com' Arrested in Project Compass Dark Reading
  4. 4
    APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday The Hacker News
  5. 5
    Cyber Command disrupted Iranian comms, sensors, top general says
  6. 6
    New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel The Hacker News
  7. 8
    Fake Google Security site uses PWA app to steal credentials, MFA codes BleepingComputer
  8. 9
    University of Hawaiʻi Cancer Center confirms data leak following ransomware attack
  9. 10
    US-Israel and Iran Trade Cyberattacks: Pro-West Hacks Cause Disruption as Tehran Retaliates SecurityWeek