Sept. 19, 2023, 2:10 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics

The Sonatype Security Research team is currently tracking an ongoing campaign on the npm registry that uses npm packages to retrieve and exfiltrate your Kubernetes configuration and SSH keys to an external server.

Article Link: npm packages caught exfiltrating Kubernetes config, SSH keys

1 post - 1 participant

Read full topic

article campaign caught configuration external keys kubernetes link npm packages registry research security security research server sonatype ssh ssh keys team topic tracking

Business Information Security Officer

@ Metrolink | Los Angeles, CA

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City

Security Engineer

@ ChartMogul | Remote, EU

Cyber Hunt Subject Matter Expert (SME) - Hybrid

@ XOR Security | Alexandria, VA

Software Compliance, Safety and Security Manager (w/m/d)

@ Bosch Group | Stuttgart, Germany

Chef de projet - Service PKI

@ Alter Solutions | Paris, France