Polyfill supply chain attack that hit more than 100,000 websites has now been linked to North Korean threat actors.

GitLab exposes abuse of its platform to trick software developers into downloading malicious payloads and finance companies into hiring North Koreans.