North Korean hackers have carried at a campaign to target macOS developers.

North Korean threat actors are distributing malicious Visual Studio Code projects that execute backdoor malware on macOS systems. Victims are tricked into opening cloned GitHub or GitLab repositories that contain booby‑trapped VS Code task configuration files. Once opened, the projects deliver obfuscated JavaScript that establishes persistence, gathers host data, and communicates with a C2 server.

Read more:

https://www.securityweek.com/north-korean-hackers-target-macos-developers-via-malicious-vs-code-projects/