This isn’t a provide chain security story, no less than not in the best way most security leaders take into consideration provide chain threat. It is a story about why attackers have independently arrived on the identical strategic calculation and what that convergence ought to inform us about the place our defensive investments are misallocated.
The sample hiding in plain sight
The Contagious Interview marketing campaign, attributed to North Korean menace actors, crossed a scale threshold in early April when Socket researchers reported that the operation had unfold to npm, PyPI, Go Modules, crates.io and Packagist concurrently. The packages impersonate legit developer tooling. As soon as put in, they perform as malware loaders that steal browser information, cryptocurrency pockets credentials and password supervisor contents. The operation has been working since January 2025, however the growth to 5 ecosystems in parallel indicators a factory-model strategy to developer concentrating on.
Individually, the GlassWorm marketing campaign developed from malicious IDE extensions into one thing extra bold. Aikido Safety researchers found a faux WakaTime extension on OpenVSX that bundled a Zig-compiled native binary alongside its JavaScript code. The binary doesn’t function inside the extension sandbox. It runs with full working system entry, scans the machine for each suitable IDE and silently installs a second-stage dropper throughout all of them. The malware avoids execution on Russian methods and makes use of Solana blockchain infrastructure for command and management. This isn’t a smash-and-grab credential theft. It’s persistent, cross-platform and designed to outlive the removing of any single extension.
Then there’s TeamPCP, which executed a cascading compromise that began with Aqua Safety’s Trivy vulnerability scanner in mid-March and chained by way of Checkmarx KICS, LiteLLM and the Telnyx Python SDK. Every compromise offered the credentials wanted to succeed in the following goal. The malware ran inside construct pipelines and developer machines, stealing cloud tokens, CI/CD secrets and techniques and repair account credentials. One security device compromise grew to become the launchpad for 4 extra.
