Typo-squatting NPM software supply chain attack uncovered

6 July 2022

Researchers at ReversingLabs have uncovered evidence of a widespread software supply chain attack through malicious JavaScript packages picked up via NPM. NPM was acquired by Microsoft-owned GitHub in 2020 and has suffered from the odd issue or two over the years (from authorization problems in 2021 to credential problems this year).

Read full article on The Register

Date:

6 July 2022

Categorie(s):

NEWS

Tag(s):

Apps, Data, Malicious, Mobile, Software Supply Chain

Cybersecurity jobs available right now: April 24, 202424 April 2024
The relationship between cybersecurity and work tech innovation24 April 2024
eBook: Cloud security skills24 April 2024
TensorFlow AI models at risk due to Keras API flaw23 April 2024
Hackers infect users of antivirus service that delivered updates over HTTP23 April 2024