Web: https://www.bleepingcomputer.com/news/security/dev-corrupts-npm-libs-colors-and-faker-breaking-thousands-of-apps/

Jan. 9, 2022, 2:17 p.m. | Ax Sharma

BleepingComputer bleepingcomputer.com

Users of popular open-source libraries 'colors' and 'faker' were left stunned after they saw their applications, using these libraries, printing gibberish data and breaking. Some surmised if the NPM libraries had been compromised, but it turns out there's more to the story. [...]

apps npm security

Information Security Analyst

@ XOR Security | Linthicum, MD

Principal Product Manager , Forensic Analysis Products

@ Amazon.com | Arlington, Virginia, USA

Cyber Security Chartered Engineer

@ Banglalink | Dhaka, Bangladesh

Account Executive, Cyber Threat Intelligence

@ Dataminr | New York, NY, United States

Principal Consultant, PCI QSA | Remote US

@ Coalfire | Denver, CO

Mid - Penetration Tester

@ XOR Security | Linthicum, MD