all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Npm packages caught exfiltrating Kubernetes config, SSH keys

Add to bookmarks
Sept. 19, 2023, 2:10 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news


The Sonatype Security Research team is currently tracking an ongoing campaign on the npm registry that uses npm packages to retrieve and exfiltrate your Kubernetes configuration and SSH keys to an external server.


Article Link: npm packages caught exfiltrating Kubernetes config, SSH keys


1 post - 1 participant


Read full topic

article campaign caught configuration external keys kubernetes link npm packages registry research security security research server sonatype ssh ssh keys team topic tracking

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Deal for Splunk brings new capabilities and competitors to Cisco 2 hours ago | malware.news
article capabilities cisco commentary +6
Ransomware group claims it's "compromised all of Sony systems" 6 hours ago | malware.news
announcement claims compromised computer +17
Nearly 900 colleges hit by MOVEit hack on National Student Clearinghouse 7 hours ago | malware.news
article colleges hack incident +9
Kick off a career in IT with this cybersecurity training bundle 9 hours ago | malware.news
article bundle career course +13
CISA task force aims to improve supply chain security with new hardware standards 10 hours ago | malware.news
article bill capabilities cisa +15
Dallas ransomware attack facilitated by stolen account 10 hours ago | malware.news
account article attack bleepingcomputer +17
Nansen impacted by third-party breach 10 hours ago | malware.news
analytics article authentication base +16
T-Mobile refutes employee data breach 10 hours ago | malware.news
april article attack breach +22
Major cyber breaches orchestrated by youth hackers 10 hours ago | malware.news
adult article breaches community +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Business Information Security Officer

@ Metrolink | Los Angeles, CA
View on infosec-jobs.com

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City
View on infosec-jobs.com

Security Engineer

@ ChartMogul | Remote, EU
View on infosec-jobs.com

Cyber Hunt Subject Matter Expert (SME) - Hybrid

@ XOR Security | Alexandria, VA
View on infosec-jobs.com

Software Compliance, Safety and Security Manager (w/m/d)

@ Bosch Group | Stuttgart, Germany
View on infosec-jobs.com

Chef de projet - Service PKI

@ Alter Solutions | Paris, France
View on infosec-jobs.com
View more jobs