![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8USbb4jtK-uD5sMxXO5_7RDCAiICjrJttX5L5Ag9gZYXGQmnL0eJaj1BIX4oky2oZkLJpXI27-gcg3QCLxXOeoI-OZRBWE3dVJDu4UutRgnfyy9hhtLEO22EohVFIL2qzOoiEzBpstBGyIkLF3BGG1bxaa5LDI6KLnbuSsY3-atovs4hV0hqOE2W0Y4-d/s1600/malware.png)
An ongoing social engineering campaign is targeting software developers with bogus npm packages under the guise of a job interview to trick them into downloading a Python backdoor.
Cybersecurity firm Securonix is tracking the activity under the name DEV#POPPER, linking it to North Korean threat actors.
“During these fraudulent interviews, the developers are often asked
Source:: The Hackers News