Malicious packages in the NPM designed for highly-targeted attacks | allinfosecnews.com

Aug. 4, 2023, 12:59 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Researchers discovered a new set of malicious packages on the npm package manager that can exfiltrate sensitive developer data. On July 31, 2023, Phylum researchers observed the publication of ten different “test” packages on the npm package manager that were developed to exfiltrate sensitive developer source code and other confidential information. All of these packages […]

The post Malicious packages in the NPM designed for highly-targeted attacks appeared first on Security Affairs.

attacks breaking news code confidential cybercrime data developer hacking information information security news it information security july malicious malicious packages malware manager npm npm package package package manager packages phylum pierluigi paganini researchers source code supply chain attack targeted attacks test

More from securityaffairs.co / Security Affairs

Ex-NSA employee sentenced to 262 months for attempting to transfer classified documents to Russia 10 hours ago | securityaffairs.co

agency breaking news classified colorado +16

Cuttlefish malware targets enterprise-grade SOHO routers 11 hours ago | securityaffairs.co

authentication black lotus black lotus labs cloud +26

A flaw in the R programming language could allow code execution 13 hours ago | securityaffairs.co

arbitrary code arbitrary code execution breaking news code +22

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall 20 hours ago | securityaffairs.co

apt bypass china china great firewall +21

Notorious Finnish Hacker sentenced to more than six years in prison 1 day, 7 hours ago | securityaffairs.co

aleksanteri kivimäki breaking news center cyber crime +17

CISA guidelines to protect critical infrastructure against AI-based threats 1 day, 11 hours ago | securityaffairs.co

agency ai ai risks analysis +27

NCSC: New UK law bans default passwords on smart devices 1 day, 21 hours ago | securityaffairs.co

april ban bans breaking news +29

The FCC imposes $200 million in fines on four US carriers for unlawfully sharing user … 1 day, 23 hours ago | securityaffairs.co

access breaking news carriers communications +19

Google prevented 2.28 million policy-violating apps from being published on Google Play in 2023 2 days, 8 hours ago | securityaffairs.co

android apps breaking news google +14

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland

View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France

View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States

View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India

View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC

View on infosec-jobs.com