The packages masquerade as developer tools, but contain functionality to extract the actual command-and-control (C2) by using seemingly harmless Pastebin content as a dead drop resolver and VDS VPS Cloud
http://dlvr.it/TRF6DT
Monday, 2 March 2026
North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT
The packages masquerade as developer tools, but contain functionality to extract the actual command-and-control (C2) by using seemingly harmless Pastebin content as a dead drop resolver and VDS VPS Cloud
http://dlvr.it/TRF6DT
Subscribe to:
Post Comments (Atom)
Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline
iT4iNT SERVER A French-speaking attacker broke into a small French automotive business, planted a keylogger, and stole banking and email cre...
-
iT4iNT SERVER A new agentic browser attack targeting Perplexity's Comet browser that's capable of turning a seemingly innocuous emai... -
iT4iNT SERVER A human rights lawyer from Pakistan's Balochistan province received a suspicious link on WhatsApp from an unknown number, ... -
iT4iNT SERVER The threat actor known as Silver Fox has been spotted orchestrating a false flag operation to mimic a Russian threat group in ...
No comments:
Post a Comment