Checkmarx warns of unknown threat actor targeting developers through NPM packages | allinfosecnews.com

Aug. 30, 2023, 11 a.m. | Duncan Riley

Security – SiliconANGLE siliconangle.com

Researchers at application security testing firm Checkmarx Ltd. today detailed a previously unknown threat actor leveraging NPM packages to target developers to steal source code and secrets. The threat actor, believed to have been active since 2021 but undetected until now, has been publishing malicious NPM packages. The malicious packages were designed with the purpose of exfiltrating sensitive data […]

The post Checkmarx warns of unknown threat actor targeting developers through NPM packages appeared first on SiliconANGLE.

actor application application security application security testing checkmarx code cyber cybersecurity developers hacking lexi2 malicious malicious npm npm packages publishing researchers secrets security security testing source code steal target targeting testing the-latest threat threat actor today undetected

More from siliconangle.com / Security – SiliconANGLE

Menlo Security inks cybersecurity partnership with Google Cloud 5 days, 1 hour ago | siliconangle.com

browser cloud companies customers +20

Microsoft rolls out passkey support for all consumer accounts 5 days, 4 hours ago | siliconangle.com

accounts consumer devices fido alliance +21

Splunk report finds generative AI both a problem and a solution for security teams 5 days, 6 hours ago | siliconangle.com

advanced ai artificial intelligence challenges +23

Verizon security expert shares insights on how SMBs can defend against rising security threats 5 days, 7 hours ago | siliconangle.com

attacks bob carver breaches browser security +37

1Password launches Extended Access Management to secure unmanaged apps and devices 5 days, 9 hours ago | siliconangle.com

1password 1password extended access management access access management +25

Edgio launches edge-enabled attack surface management to bolster continuous web application security 5 days, 9 hours ago | siliconangle.com

ai application application security assets +29

StrongDM raises $34M to enhance zero-trust privileged access management 5 days, 9 hours ago | siliconangle.com

access access management anchor capital aws +34

Palo Alto Networks launches Prisma SASE 3.0 for enhanced device security 5 days, 10 hours ago | siliconangle.com

alto artificial artificial intelligence cyber +22

Google launches 1B passkey authentications and new security updates 5 days, 10 hours ago | siliconangle.com

1password account account protection adoption +37

Principal Engineer - DLP Endpoint Security

@ Netskope | Bengaluru, Karnataka, India

View on infosec-jobs.com

Security Consultant (m/w/d)

@ Deutsche Telekom | Berlin, Deutschland

View on infosec-jobs.com

Security Engineer

@ IDEMIA | Haarlem, NL, 2031 CC

View on infosec-jobs.com

CyberSecurity Forensics and Incident Response Analyst

@ Bosch Group | Pittsburgh, PA, United States

View on infosec-jobs.com

Cyber MS MDR - Sr Associate

@ KPMG India | Bengaluru, Karnataka, India

View on infosec-jobs.com

Senior Lead Cybersecurity Architect-Threat modeling, Cryptography

@ JPMorgan Chase & Co. | India

View on infosec-jobs.com