North Korea’s Contagious Interview Campaign Spreads Across 5 Ecosystems, Delivering Staged RAT Payloads

North Korean threat actors have launched a prolific cross-ecosystem supply chain attack, publishing over 1,700 malicious packages to npm, PyPI, Go Modules, crates.io, and Packagist that impersonate developer tools to covertly deliver staged RAT malware, steal credentials and cryptocurrency wallets, and enable deep remote access into compromised developer environments.