all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Malicious npm Package from a Twin Developers Deliver r77 Rootkit

Add to bookmarks
Oct. 5, 2023, 7:41 a.m. | Guru

Cyber Security News cybersecuritynews.com

A malicious supply chain attack affecting the popular npm platform, often used for Node.js projects, has been identified.  This attack employs a tactic known as typosquatting, where malicious actors create packages with names strikingly similar to legitimate ones to deceive developers. Cybersecurity researchers at ReversingLabs have unveiled a concerning trend in the realm of open-source […]


The post Malicious npm Package from a Twin Developers Deliver r77 Rootkit appeared first on Cyber Security News.

attack cybersecurity developers malicious malicious actors malicious npm malware names node node.js npm npm package package packages platform popular projects r77 rootkit researchers reversinglabs rootkit supply supply chain supply chain attack tactic trend typosquatting

Visit resource

More from cybersecuritynews.com / Cyber Security News

NCSC Warns of Russian Hackers Attacking Critical National Infrastructure 19 minutes ago | cybersecuritynews.com
alignment critical critical national infrastructure cyber +19
New macOS Adload Malware Bypasses Built-in macOS Antivirus Detection 2 hours ago | cybersecuritynews.com
adload antivirus apple authors +13
World Password Day 2024: Create Strong Passwords & Stay Safe Online 6 hours ago | cybersecuritynews.com
accounts cyber cyber security cyber threats +20
Beware! Threat Actors Selling RDP Access on Hacker Forums 6 hours ago | cybersecuritynews.com
access alert communities critical +28
Critical MailCleaner Vulnerabilities Let Attackers Execute arbitrary command 6 hours ago | cybersecuritynews.com
administrator attacker attackers command +17
Dropbox Sign Hacked: Attackers Stolen API Keys, MFA, & Hashed Passwords 10 hours ago | cybersecuritynews.com
access api api keys april +27
Top 8 SSPM Tools to Secure Your SaaS Stack in 2024 22 hours ago | cybersecuritynews.com
applications as-a-service automation businesses +24
Hackers Infiltrated 9-days Within UnitedHealth Network Before Ransomware Attack 1 day, 5 hours ago | cybersecuritynews.com
alphv attack blackcat breach +21
Malware Cuckoo – Previously Unknown Infosteler Spyware Steals Data From MacOS 1 day, 6 hours ago | cybersecuritynews.com
april bird code cuckoo +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Associate Manager, BPT Infrastructure & Ops (Security Engineer)

@ SC Johnson | PHL - Makati
View on infosec-jobs.com

Cybersecurity Analyst - Project Bound

@ NextEra Energy | Jupiter, FL, US, 33478
View on infosec-jobs.com

Lead Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Junior Information Security Coordinator (Internship)

@ Garrison Technology | London, Waterloo, England, United Kingdom
View on infosec-jobs.com

Sr. Security Engineer

@ ScienceLogic | Reston, VA
View on infosec-jobs.com
View more jobs