all InfoSec news
Malicious npm Packages Found Exfiltrating Sensitive Data from Developers
Aug. 4, 2023, 10:33 a.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
Software supply chain firm Phylum, which first identified the "test" packages on July 31, 2023, said they "demonstrated increasing functionality and refinement," hours after which they were removed and re-uploaded under different
cybersecurity data developer developers information july malicious malicious npm malicious packages npm npm package package packages phylum registry researchers sensitive data software software supply chain supply supply chain test
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Information Security Specialist, Sr. (Container Hardening)
@ Rackner | San Antonio, TX
Principal Security Researcher (Advanced Threat Prevention)
@ Palo Alto Networks | Santa Clara, CA, United States
EWT Infosec | IAM Technical Security Consultant - Manager
@ KPMG India | Bengaluru, Karnataka, India
Security Engineering Operations Manager
@ Gusto | San Francisco, CA; Denver, CO; Remote
Network Threat Detection Engineer
@ Meta | Denver, CO | Reston, VA | Menlo Park, CA | Washington, DC