#malicious-packages

[ follow ]
#npm #cybersecurity #data-exfiltration #supply-chain-attack #supply-chain-security
Information security
fromThe Hacker News
7 hours ago

GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data

GemStuffer abuses RubyGems to exfiltrate scraped UK council portal content by publishing data-bearing gems using hardcoded API keys.
Information security
fromSecurityWeek
2 days ago

Build Application Firewalls Aim to Stop the Next Supply Chain Attack

Supply chain attacks repeatedly compromise CI/CD build processes via trusted dependencies, enabling malicious code to enter builds and deliver payloads through automation.
Information security
fromThe Hacker News
6 days ago

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

Three malicious PyPI packages delivered ZiChatBot malware using Zulip REST APIs as command-and-control infrastructure instead of traditional servers.
Information security
fromThe Hacker News
2 months ago

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

Five malicious Rust crates disguised as time utilities steal .env files containing API keys and secrets, exfiltrating data to threat actor infrastructure.
Information security
fromThe Hacker News
2 months ago

Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens

A malicious NuGet package named StripeApi.Net impersonated Stripe's legitimate library to steal financial sector developers' API tokens and sensitive data.
Information security
fromThe Hacker News
3 months ago

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two malicious PyPI packages disguised as spellcheckers delivered a Python RAT via a base64 payload hidden in a Basque dictionary file.
#npm
fromZDNET
7 months ago
Information security

5 ways to spot software supply chain attacks and stop worms - before it's too late

fromZDNET
7 months ago
Information security

5 ways to spot software supply chain attacks and stop worms - before it's too late

more#npm
Information security
fromThe Hacker News
9 months ago

North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign

North Korean threat actors are deploying malicious npm packages as part of ongoing software supply chain attacks against the open-source ecosystem.
fromIT Pro
10 months ago

Developers face a torrent of malware threats as malicious open source packages surge 188%

"Attackers are no longer simply experimenting with open source. The numbers are telling us that threat actors have identified data as the most profitable target, and developers as the easiest way in."
Privacy technologies
[ Load more ]