Home / Jul 07, 2026 / Story
0
#6 SecurityWeek general July 06, 2026 at 13:11 UTC

North Korean Hackers Target Open Source Developers in Supply Chain Attacks

By Ionut Arghire

AI Summary

North Korean threat actors behind the 'PolinRider' campaign have compromised over 100 legitimate open source packages and repositories to deliver a backdoor and information stealer targeting software developers. The supply chain attack vector — poisoning trusted open source dependencies — puts any developer consuming affected packages at risk of silent compromise.

Relevance score: 83.0/100

# More from July 07