Internet reports that a U.S. cybersecurity company said North Korean hackers have turned one of the world's most widely used software libraries into a carrier of malware. In a report released last week, researchers at supply chain security firm Socket said they found more than 300 malicious code packages uploaded to the npm registry-a central code repository for millions of developers to share and install JavaScript software. These code packages (small, reusable code snippets that are widely used in scenarios ranging from websites to cryptocurrency applications) are designed to appear harmless. But once downloaded, they are implanted with malware that can steal passwords, browser data and cryptocurrency wallet keys. Socket said the attack, which it named "Contagious Interview", was part of a complex operation carried out by North Korea's officially backed hacking group. These hackers will disguise themselves as technology recruiters and launch attacks specifically targeting developers in blockchain, Web3 and related fields.