North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

The North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that’s distributed via malicious Microsoft Visual Studio Code (VS Code) projects.
The use of VS Code “tasks.json” to distribute malware is a relatively new tactic adopted by the threat actor since December 2025, with the attacks

Source

What's Hot

Chinese Hackers Target European Governments in Espionage Campaigns

The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills

New Venom Stealer MaaS Platform Automates Continuous Data Theft

Chinese Hackers Target European Governments in Espionage Campaigns

The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills

New Venom Stealer MaaS Platform Automates Continuous Data Theft

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

Cyber M&A Roundup: Cyber Giants Strengthen AI Security Offerings

Why the Identity Security Fabric is Essential for Securing AI and Non-Human Identities

Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials

Most Popular

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

Cyber M&A Roundup: Cyber Giants Strengthen AI Security Offerings

Our Picks

Watch out for SVG files booby-trapped with malware

The WhatsApp screen-sharing scam you didn’t see coming

Your information is on the dark web. What happens next?

Subscribe to Updates

What's Hot

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

Related Posts

Subscribe to Updates