all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

npm Package Found Delivering Sophisticated RAT

Add to bookmarks
Jan. 19, 2024, 3:02 a.m. | Phylum Research Team

Phylum blog.phylum.io

⚠️This appears to be an ongoing campaign. Since publication, additional packages have been released tied to this threat actor. See the IOCs below.

On January 12, 2024 Phylum’s automated risk detection platform alerted us to a suspicious publication on npm. The package in question, oscompatible, contained

actor automated campaign detection found iocs january npm npm package package packages phylum platform question rat research risk threat threat actor

Visit resource

More from blog.phylum.io / Phylum

Python Package Installation Attacks 3 days, 4 hours ago | blog.phylum.io
attackers attacks back code +14
Python Trojan Functions and Imports 3 days, 4 hours ago | blog.phylum.io
calling code concept functions +10
Python Package Spoofing 3 days, 4 hours ago | blog.phylum.io
authors code developers foundation +18
Series: How Malicious Python Code Gains Execution 3 days, 4 hours ago | blog.phylum.io
attackers code dependencies developer +21
Nation-State Threat Actors Renew Publications to npm 3 days, 21 hours ago | blog.phylum.io
apts attack back blog +18
Enterprise Strategy Group Report: The Growing Complexity of Securing the Software Supply Chain 1 week, 3 days ago | blog.phylum.io
america called complexity developer +21
Q1 2024 Evolution of Software Supply Chain Security Report 1 week, 5 days ago | blog.phylum.io
cve cves exploited in the wild +17
Rust crate shipping xz backdoor 2 weeks, 2 days ago | blog.phylum.io
attack backdoor compression engineer +11
Digital Detritus: Unintended Consequences of Open Source Sustainability Platforms 2 weeks, 4 days ago | blog.phylum.io
cobra consequences digital effect +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Researcher, SIEM

@ Huntress | Remote Canada
View on infosec-jobs.com

Senior Application Security Engineer

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Cyber Security Manager

@ American Express Global Business Travel | United States - New York - Virtual Location
View on infosec-jobs.com

Incident Responder Intern

@ Bentley Systems | Remote, PA, US
View on infosec-jobs.com

SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com
View more jobs