North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

Published: 1 day ago (March 2, 2026 at 03:44 AM EST)

1 min read

Source: The Hacker News

Overview

Cybersecurity researchers have disclosed a new iteration of the ongoing Contagious Interview campaign, where the North Korean threat actors have published a set of 26 malicious packages to the npm registry.

The packages masquerade as developer tools, but contain functionality to extract the actual command-and-control (C2) by using seemingly harmless Pastebin content as a dead‑drop resolver.

Back to Blog

A Possible US Government iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals

A highly sophisticated set of iPhone hijacking techniques has likely infected tens of thousands of phones or more. Clues suggest it was originally built for the...

Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations

Overview !Outlook phishing screenshothttps://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgMxXTslXwVQy4UDmwQOi39oPLz0gBjk3E_mUL0hONp_uAbe2mkCooBcTU3zE6nA...

LexisNexis confirms data breach as hackers leak stolen files

!https://www.bleepstatic.com/content/hl-images/2026/03/03/lexisnexis.jpg American data analytics company LexisNexis Legal & Professional has confirmed to Bleepi...

Open-Source CyberStrikeAI Deployed in AI-Driven FortiGate Attacks Across 55 Countries

The threat actor behind the recently disclosed artificial intelligence AI-assisted campaign targeting Fortinet FortiGate appliances leveraged an open‑source, AI...

Overview

Related posts

A Possible US Government iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals

Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations

LexisNexis confirms data breach as hackers leak stolen files

Open-Source CyberStrikeAI Deployed in AI-Driven FortiGate Attacks Across 55 Countries