Popular node-ipc npm package compromised to steal credentials

node-ipc npm Package with 822K Weekly Downloads Compromised in Supply Chain Attack

itsecuritynews.info - 14/May 19:32

A widely used JavaScript inter-process communication library has been weaponized again. Socket and Stepsecurity have confirmed that three newly...

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

bleepingcomputer.com - 12/May 11:29

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering credential-stealing malware...

Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets

itsecuritynews.info - 14/May 19:02

Cybersecurity researchers are sounding the alarm about what has been described as “malicious activity” in newly published versions of node-ipc....

Hackers Compromise 170 npm Packages to Steal GitHub, npm, AWS, and Kubernetes Secrets

itsecuritynews.info - 14/May 19:32

A sprawling supply chain attack has put software developers worldwide on high alert after hackers compromised more than 170 npm packages and two PyPI...

QLNX Targets Developers in Supply Chain Credential Theft Campaign

itsecuritynews.info - 06/May 08:36

QLNX is a newly documented Linux remote access trojan (RAT) that targets the theft on developers’ and DevOps credentials to hijack software supply...

QLNX Targets Developers in Supply Chain Credential Theft Campaign

itsecuritynews.info - 06/May 08:36

QLNX is a newly documented Linux remote access trojan (RAT) that targets the theft on developers’ and DevOps credentials to hijack software supply...

170 npm Packages Hijacked to Steal GitHub, AWS & Kubernetes Secrets

itsecuritynews.info - 14/May 11:03

Hackers have launched a large-scale supply chain attack by compromising more than 170 npm packages and two PyPI libraries, collectively downloaded...

PyTorch Lightning and Intercom Client Users Exposed to Credential Stealing Campaign

itsecuritynews.info - 02/May 06:34

Python’s software supply chain has been compromised, which targeted the popular PyPI package Lightning and exposed downstream machine learning...

PyTorch Lightning and Intercom Client Users Exposed to Credential Stealing Campaign

itsecuritynews.info - 02/May 06:34

Python’s software supply chain has been compromised, which targeted the popular PyPI package Lightning and exposed downstream machine learning...

Hackers Deploy Modular RAT With Credential Theft and Screenshot Capture Capabilities

itsecuritynews.info - 08/May 20:32

A newly identified malware campaign is targeting senior executives and government investigators across Southeast Asia, using a modular Remote Access...

Rubriques :

Popular node-ipc npm package compromised to steal credentials

Articles similaires

node-ipc npm Package with 822K Weekly Downloads Compromised in Supply Chain Attack

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets

Hackers Compromise 170 npm Packages to Steal GitHub, npm, AWS, and Kubernetes Secrets

QLNX Targets Developers in Supply Chain Credential Theft Campaign

QLNX Targets Developers in Supply Chain Credential Theft Campaign

170 npm Packages Hijacked to Steal GitHub, AWS & Kubernetes Secrets

PyTorch Lightning and Intercom Client Users Exposed to Credential Stealing Campaign

PyTorch Lightning and Intercom Client Users Exposed to Credential Stealing Campaign

Hackers Deploy Modular RAT With Credential Theft and Screenshot Capture Capabilities

Les derniers communiqués