Sept. 19, 2023, 2:05 p.m. | Ax Sharma

Security Boulevard

The Sonatype Security Research team is currently tracking an ongoing campaign on the npm registry that uses npm packages to retrieve and exfiltrate your Kubernetes configuration and SSH keys to an external server.

The post npm packages caught exfiltrating Kubernetes config, SSH keys appeared first on Security Boulevard.

campaign caught configuration devzone external keys kubernetes malware malware analysis npm packages registry research security security boulevard security research server sonatype ssh ssh keys team tracking

Business Information Security Officer

@ Metrolink | Los Angeles, CA

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City

Security Engineer

@ ChartMogul | Remote, EU

REF7225P- Information Security (HIPPA& GDPR) Pune-Contract Employee

@ WNS Global Services | Pune, India

Cortex Systems Engineer, SecOps Platform - North America

@ Palo Alto Networks | Remote, Texas, United States

Senior Threat Engineer

@ Zscaler | Tel Aviv-Yafo, Israel