all InfoSec news
Crypto-Themed npm Packages Found Delivering Stealthy Malware
Nov. 4, 2023, 2 p.m. | Phylum Research Team
Phylum blog.phylum.io
On October 30, 2023 Phylum’s automated risk detection platform alerted us to a strange publication to npm called puma-com. Upon investigation, we found a very convoluted attack chain that ultimately pulled a remote file, manipulated it in place, called an exported function from that file, and then meticulously
attack attack chain automated called crypto detection file found function investigation malware npm october packages phylum platform pulled puma research risk ultimately
More from blog.phylum.io / Phylum
Devious Python Build Requirements
2 days, 18 hours ago |
blog.phylum.io
Nation-State Threat Actors Renew Publications to npm
1 week, 1 day ago |
blog.phylum.io
Q1 2024 Evolution of Software Supply Chain Security Report
2 weeks, 2 days ago |
blog.phylum.io
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Associate Manager, BPT Infrastructure & Ops (Security Engineer)
@ SC Johnson | PHL - Makati
Cybersecurity Analyst - Project Bound
@ NextEra Energy | Jupiter, FL, US, 33478
Lead Cyber Security Operations Center (SOC) Analyst
@ State Street | Quincy, Massachusetts
Junior Information Security Coordinator (Internship)
@ Garrison Technology | London, Waterloo, England, United Kingdom
Sr. Security Engineer
@ ScienceLogic | Reston, VA