X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - ITSECURITYNEWS.INFO - A La Une - 04/Apr 12:02

Top Node.js Maintainers Targeted in Sophisticated Social Engineering Scheme

A highly coordinated social engineering campaign is actively targeting top open-source developers in the Node.js and npm ecosystem. Following the recent compromise of the popular package Axios, which sees over 100 million weekly downloads, several high-impact software maintainers have reported…

Articles similaires

Sorry! Image not available at this time

Top Node.js Maintainers Targeted in Sophisticated Social Engineering Scheme

itsecuritynews.info - 04/Apr 12:02

A highly coordinated social engineering campaign is actively targeting top open-source developers in the Node.js and npm ecosystem. Following the...

Sorry! Image not available at this time

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

itsecuritynews.info - 03/Apr 12:36

The maintainer of the Axios npm package has confirmed that the supply chain compromise was the result of a highly-targeted social engineering...

Sorry! Image not available at this time

Axios npm hack used fake Teams error fix to hijack maintainer account

bleepingcomputer.com - 04/Apr 20:30

The maintainers of the popular Axios HTTP client have published a detailed post-mortem describing how one of its developers was targeted by a social...

Sorry! Image not available at this time

Axios npm hack used fake Teams error fix to hijack maintainer account

bleepingcomputer.com - 04/Apr 20:30

The maintainers of the popular Axios HTTP client have published a detailed post-mortem describing how one of its developers was targeted by a social...

Sorry! Image not available at this time

Axios Compromise on npm Introduces Hidden Malicious Package

itsecuritynews.info - 31/Mar 21:09

A newly discovered software supply chain attack targeting the npm ecosystem briefly compromised one of the most widely used JavaScript libraries in...

Sorry! Image not available at this time

Axios Compromise on npm Introduces Hidden Malicious Package

itsecuritynews.info - 31/Mar 21:09

A newly discovered software supply chain attack targeting the npm ecosystem briefly compromised one of the most widely used JavaScript libraries in...

Sorry! Image not available at this time

Hackers compromise Axios npm package to drop cross-platform malware

bleepingcomputer.com - 31/Mar 13:53

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver remote access trojans to...

Sorry! Image not available at this time

Hackers compromise Axios npm package to drop cross-platform malware

bleepingcomputer.com - 31/Mar 13:53

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver remote access trojans to...

Sorry! Image not available at this time

Google links Axios npm supply chain attack to North Korea-linked APT UNC1069

securityaffairs.co - 01/Apr 13:47

Google links the Axios npm supply chain attack to North Korean threat group UNC1069, targeting financial gain. Google has attributed the recent Axios...

Sorry! Image not available at this time

Axios NPM Packages Compromised to Inject Malicious Codes in an Active Supply Chain Attack

itsecuritynews.info - 31/Mar 04:09

A sophisticated supply chain attack has targeted Axios, one of the most heavily adopted HTTP clients within the JavaScript ecosystem, by introducing a...

Les derniers communiqués