North Korea-Linked Hackers Target Developers Using Malicious VS Code Projects

Malicious actors linked to North Korea, associated with the Contagious Interview campaign, are targeting developers by using malicious Microsoft Visual Studio Code (VS Code) projects as lures. This tactic, first identified in December 2025, was observed by Jamf Threat Labs. The attackers deploy a backdoor on compromised devices. No further technical details about the backdoor or infection methods are provided. The objective remains data exfiltration or remote control of targeted systems.