all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Npm packages caught exfiltrating Kubernetes config, SSH keys

Add to bookmarks
Sept. 19, 2023, 2:10 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news


The Sonatype Security Research team is currently tracking an ongoing campaign on the npm registry that uses npm packages to retrieve and exfiltrate your Kubernetes configuration and SSH keys to an external server.


Article Link: npm packages caught exfiltrating Kubernetes config, SSH keys


1 post - 1 participant


Read full topic

article campaign caught configuration external keys kubernetes link npm packages registry research security security research server sonatype ssh ssh keys team topic tracking

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Note to investors and security pros: drive innovation by going on the offensive 42 minutes ago | malware.news
article cybersecurity drive innovation +10
New network to target migrant smugglers in the digital domain 52 minutes ago | malware.news
alliance april aspect counter +17
New High-Severity Vulnerability in Apache ActiveMQ Poses Risk of Unauthorized Access: CVE-2024-32114 an hour ago | malware.news
access activemq apache apache activemq +15
My impression of Botconf 2024 2 hours ago | malware.news
analysis botconf channel dotnet +13
Top 10 Free IoC Search & Enrichment Platforms 2 hours ago | malware.news
amp assets attacks breaches +33
ISC Stormcast For Friday, May 3rd, 2024 https://isc.sans.edu/podcastdetail/8966, (Fri, May 3rd) 9 hours ago | malware.news
topic
Preparation: The Less Shiny Side of Incident Response - Joe Gross - ESW #360 13 hours ago | malware.news
article incident incident response link +4
Critical GitLab account takeover flaw added to CISA’s KEV Catalog 13 hours ago | malware.news
account account takeover article catalog +17
US warns of North Korean hackers using email security flaws for phishing attacks 15 hours ago | malware.news
article attacks change email +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

SITEC- Systems Security Administrator- Camp HM Smith

@ Peraton | Camp H.M. Smith, HI, United States
View on infosec-jobs.com

Cyberspace Intelligence Analyst

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

General Manager, Cybersecurity, Google Public Sector

@ Google | Virginia, USA; United States
View on infosec-jobs.com

Cyber Security Advisor

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Engineering Team Manager – Security Controls

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com
View more jobs