GoPlus Warns of North Korean ‘Famous Chollima’ Malicious npm Packages

GoPlus alerts developers about 26 malicious npm packages tied to the North Korean hacker group 'Famous Chollima,' embedding RATs and data theft scripts targeting software ecosystems.

43d ago

Summary

GoPlus issued a warning regarding 26 malicious npm packages distributed by the North Korean 'Famous Chollima' hacker group. These packages contain install scripts that execute remote access trojans (RATs) and harvest sensitive data, highlighting the growing threat of supply chain attacks in developer environments.

Terms & Concepts

npm (Node Package Manager): A widely used software package manager for JavaScript that allows developers to share and install code packages.
Remote Access Trojan (RAT): A type of malware enabling attackers to remotely control a victim’s computer and steal sensitive information.
Supply Chain Attack: A cyberattack that targets software or hardware suppliers to compromise products delivered to end users.