North Korea-linked hackers likely used the Axios npm compromise to deliver a cross-platform RAT

The Axios npm compromise now appears tied to a North Korea-linked threat cluster, according to multiple security vendors. CrowdStrike attributed the activity to STARDUST CHOLLIMA with moderate confidence, while Google Threat Intelligence Group linked the campaign to UNC1069, a North Korea nexus actor that has targeted cryptocurrency and fintech organizations. The attack hit on March […] The post North Korea-linked hackers likely used the Axios npm compromise to deliver a cross-platform RAT appeared first on VPN Central.