Crypto Ticker:
sysadmin from Cyber Security News

node-ipc npm Package with 822K Weekly Downloads Compromised in Supply Chain Attack

Guru Baran
7 hours ago
6 Views
0 Comments
node-ipc npm Package with 822K Weekly Downloads Compromised in Supply Chain Attack

A widely used JavaScript inter-process communication library has been weaponized again. Socket and Stepsecurity have confirmed that three newly published versions of node-ipc, a package with over 822,000 weekly downloads, contain obfuscated stealer and backdoor payloads, marking the second major supply chain compromise of this package since...

Read the full article at the source.

Read Original Article
Was this helpful?
Share:

Comments (0)

Please login to post a comment

No comments yet. Be the first to comment!

Related News

Digital security in war and conflict: challenges for civil society and tools for resilience
Digital security in war and conflict: challenges for civil society and tools for resilience
just now
Sandworm Hackers Pivot From Compromised IT Systems Toward Critical OT Assets
Sandworm Hackers Pivot From Compromised IT Systems Toward Critical OT Assets
5 hours ago
Chinese APT Hackers Exploit Microsoft Exchange to Breach Energy Sector Network
Chinese APT Hackers Exploit Microsoft Exchange to Breach Energy Sector Network
5 hours ago
Linux devs are fighting the new age-gated internet
Linux devs are fighting the new age-gated internet
6 hours ago
New Malware Framework Enables Screen Control, Browser Artifact Access, and UAC Bypass
New Malware Framework Enables Screen Control, Browser Artifact Access, and UAC Bypass
6 hours ago

Browse by Category

blog crypto news politics privacy sysadmin technology