logo

North Korean Hackers Target Developers in Expanded Supply Chain Attack Campaign

ID: 4d447700-2a43-5797-8501-b5c95c8d703d

STIX ID: report--4d447700-2a43-5797-8501-b5c95c8d703d

Feed Name: ThreatCluster

Threat Score
88/100

Date Published: 2026-07-03

Date Updated: 2026-07-04

...
...

PolinRider is a North Korean-linked supply-chain campaign that hides malicious JavaScript loaders inside trusted open-source packages and browser extensions; U.S. security firm Socket identified 162 malicious release artifacts across 108 packages and extensions, creating a widespread risk of credential theft and further exploitation for developers and organizations.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.