all InfoSec News
Exploit creator selling 250+ reserved npm packages on Telegram
Sonatype Blog blog.sonatype.com
Recently, the Sonatype Security Research team identified more than 250 npm packages which are lucrative and convincing exploits, because these are named exactly like the open source projects coming from Amazon Web Services (AWS), Microsoft, React, CKEditor, among other popular names.
amazon amazon web services aws coming exploit exploits malware analysis microsoft names npm open source packages popular projects react research security security research selling services sonatype sonatype repository firewall team telegram vulnerabilities web web services