North Korea-Linked Group Distributes 1,700 Malicious Packages Across Open-Source Ecosystems

A North Korea-linked threat group known as Contagious Interview has distributed 1,700 malicious packages across npm, PyPI, Go, and Rust ecosystems, expanding its campaign to target developers. The packages impersonated legitimate developer tooling while functioning as malware loaders, continuing the group’s established tactics. No specific dates, CVE IDs, or technical indicators (e.g., package names, payload details) were provided in the reported content. The attack vector leverages open-source package repositories to compromise systems through supply chain exploitation. The impact includes potential unauthorized access, data exfiltration, or further malware deployment. The campaign underscores the persistent threat posed by state-aligned actors in software supply chains.