{"id":7535,"date":"2026-03-23T20:12:15","date_gmt":"2026-03-23T20:12:15","guid":{"rendered":"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/03\/23\/north-korean-hackers-abuse-vs-code-auto-run-tasks-to-deploy-stoatwaffle-malware\/"},"modified":"2026-03-23T20:12:15","modified_gmt":"2026-03-23T20:12:15","slug":"north-korean-hackers-abuse-vs-code-auto-run-tasks-to-deploy-stoatwaffle-malware","status":"publish","type":"post","link":"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/03\/23\/north-korean-hackers-abuse-vs-code-auto-run-tasks-to-deploy-stoatwaffle-malware\/","title":{"rendered":"North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware"},"content":{"rendered":"<p>\u200bThe North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that&#8217;s distributed via malicious Microsoft Visual Studio Code (VS Code) projects.<br \/>\nThe use of VS Code &#8220;tasks.json&#8221; to distribute malware is a relatively new tactic adopted by the threat actor since December 2025, with the attacks\u00a0The North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that&#8217;s distributed via malicious Microsoft Visual Studio Code (VS Code) projects.<br \/>\nThe use of VS Code &#8220;tasks.json&#8221; to distribute malware is a relatively new tactic adopted by the threat actor since December 2025, with the attacks\u00a0\u00a0The Hacker News<\/p>","protected":false},"excerpt":{"rendered":"<p>\u200bThe North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that&#8217;s distributed via malicious Microsoft Visual Studio Code (VS Code) projects. The use of VS Code &#8220;tasks.json&#8221; to distribute malware is a relatively new tactic adopted by the threat actor since&hellip;&nbsp;<a href=\"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/03\/23\/north-korean-hackers-abuse-vs-code-auto-run-tasks-to-deploy-stoatwaffle-malware\/\" class=\"\" rel=\"bookmark\">Read More &raquo;<span class=\"screen-reader-text\">North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware<\/span><\/a><\/p>\n","protected":false},"author":0,"featured_media":7536,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/7535"}],"collection":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/comments?post=7535"}],"version-history":[{"count":0,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/7535\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media\/7536"}],"wp:attachment":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media?parent=7535"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/categories?post=7535"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/tags?post=7535"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}