The North Korean threat actors behind the Contagious Interview campaign have continued to flood the npm registry with 197 more malicious packages since last month.
According to Socket, these packages have been downloaded over 31,000 times, and are designed to deliver a variant of OtterCookie that brings together the features of BeaverTail and prior versions of OtterCookie.

Some of the



Source: TheHackerNews
Source Link: https://thehackernews.com/2025/11/north-korean-hackers-deploy-197-npm.html