North Korea-Linked PolinRider Campaign Hides JavaScript Loaders in Open Source Repositories
Security researchers have uncovered a North Korea-linked supply chain campaign that plants hidden JavaScript loaders inside open source repositories and package releases used by developers. The campaign, tracked as PolinRider, has spread across npm, …