all InfoSec news
Dozens of npm Packages Caught Attempting to Deploy Reverse Shell
Nov. 2, 2023, 6:02 p.m. | Phylum Research Team
Phylum blog.phylum.io
On October 27, Phylum’s automated risk detection platform began alerting us to a series of suspicious publications on npm. Over the course of the following few days, we discovered a campaign involving at least 48 different publications. These packages, deceptively named to appear legitimate, contained obfuscated JavaScript designed
alerting automated campaign caught course deploy detection javascript npm obfuscated october packages phylum platform publications research reverse reverse shell risk series shell
More from blog.phylum.io / Phylum
Python Package Installation Attacks
2 days, 23 hours ago |
blog.phylum.io
Python Trojan Functions and Imports
2 days, 23 hours ago |
blog.phylum.io
Python Package Spoofing
2 days, 23 hours ago |
blog.phylum.io
Series: How Malicious Python Code Gains Execution
2 days, 23 hours ago |
blog.phylum.io
Nation-State Threat Actors Renew Publications to npm
3 days, 16 hours ago |
blog.phylum.io
Q1 2024 Evolution of Software Supply Chain Security Report
1 week, 5 days ago |
blog.phylum.io
Rust crate shipping xz backdoor
2 weeks, 2 days ago |
blog.phylum.io
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Cybersecurity Engineer
@ Booz Allen Hamilton | USA, VA, Arlington (1550 Crystal Dr Suite 300) non-client
Invoice Compliance Reviewer
@ AC Disaster Consulting | Fort Myers, Florida, United States - Remote
Technical Program Manager II - Compliance
@ Microsoft | Redmond, Washington, United States
Head of U.S. Threat Intelligence / Senior Manager for Threat Intelligence
@ Moonshot | Washington, District of Columbia, United States
Customer Engineer, Security, Public Sector
@ Google | Virginia, USA; Illinois, USA