North Korea's Lazarus group has launched a new malware campaign via npm packages, targeting data theft and crypto wallet attacks.
Scale and Methods of Attack
Researchers identified six npm packages containing malware aimed at compromising development environments. These packages employ 'typosquatting' to trick developers into downloading malware disguised as known libraries.
Technology and Targets of Malware
The malware targets Chrome, Brave, and Firefox browser profiles, and keychain data on macOS devices. These attacks aim to steal login credentials and take control of cryptocurrency wallets such as Solana and Exodus.
Defense Against Supply Chain Attacks
Cybersecurity experts recommend strengthening security measures to defend against such threats, including automated dependency auditing and regular software monitoring.
The increasing complexity of attacks demands organizations tighten their security measures. Implementing additional protective mechanisms can help prevent threats to corporate security and sensitive information.
