News

Lazarus Group deceives developers with 6 new malicious NPM packages

  • Matt Kapko--CyberScoop
  • published date: 2025-03-14 23:59:15 UTC

Socket researchers said the malware-ridden packages were collectively downloaded over 330 times. GitHub removed all of the malicious packages Wednesday.

Skip to main content Nominations can be submitted for the 2025 CyberScoop 50 awards! Click here! Close Socket researchers said the malware-ridden packages were collectively downloaded over 330 ti… [+3056 chars]