all InfoSec news
This Week in Malware—npm backdoors, bugs, 'mystery placeholders'
April 29, 2022, 3:46 p.m. | Ax Sharma
Sonatype Blog blog.sonatype.com
This week in malware, Sonatype's automated malware detection systems flagged npm packages laced with embedded backdoors. Additionally, the latest highlights include an interesting pattern of "mystery placeholder" packages seen on npm in the past few days and a dangerous npm flaw that allowed attackers to add anyone as a 'maintainer' to their malicious packages.
backdoors bugs devzone featured malware nexus firewall npm this week in malware vulnerabilities
More from blog.sonatype.com / Sonatype Blog
DevOps pioneers navigate organizational transformation
6 days, 10 hours ago |
blog.sonatype.com
The essential duo of SCA and SBOM management
1 week, 5 days ago |
blog.sonatype.com
Automating and maintaining SBOMs
2 weeks, 5 days ago |
blog.sonatype.com
Cyber readiness and SBOMs
4 weeks, 1 day ago |
blog.sonatype.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Audit and Compliance Technical Analyst
@ Accenture Federal Services | Washington, DC
ICS Cyber Threat Intelligence Analyst
@ STEMBoard | Arlington, Virginia, United States
Cyber Operations Analyst
@ Peraton | Arlington, VA, United States
Cybersecurity – Information System Security Officer (ISSO)
@ Boeing | USA - Annapolis Junction, MD
Network Security Engineer I - Weekday Afternoons
@ Deepwatch | Remote