Connect with us

Community

Self-Replicating Worm Affected Several Hundred NPM Packages, Including CrowdStrike's

Community

AMD Closes in on Intel in Latest Steam Hardware Survey

Community

A Decade of BBC Question Time Data Reveals Imbalance in Journalist Guests

Community

A Decade of BBC Question Time Data Reveals Imbalance in Journalist Guests

Community

A Decade of BBC Question Time Data Reveals Imbalance in Journalist Guests

Community

Ghana Tries To Regulate Online Prophecies

Community

Ghana Tries To Regulate Online Prophecies

Community

Ghana Tries To Regulate Online Prophecies

Community

How Nokia Went From iPhone Victim To $1 Billion Nvidia Deal

Community

Australia's Biggest Pension Fund To Cut Global Stocks Allocation on AI Concerns

Community

ASUS Announces Price Hikes Starting January 5

Community

No Standard iPhone 18 Launch This Year, Reports Suggest

Community

Iran Offers To Sell Advanced Weapons Systems For Crypto

Community

IDC Estimates Apple Shipped Just 45,000 Vision Pros Last Quarter

Community

Some of Your Cells Are Not Genetically Yours

Community

Self-Replicating Worm Affected Several Hundred NPM Packages, Including CrowdStrike’s

Published

4 months ago

on

[ad_1]

The Shai-Hulud malware campaign impacted hundreds of npm packages across multiple maintainers, reports Koi Security, including popular libraries like @ctrl/tinycolor and some packages maintained by CrowdStrike.

Malicious versions embed a trojanized script (bundle.js) designed to steal developer credentials, exfiltrate secrets, and persist in repositories and endpoints through automated workflows.
Koi Security created a table of packages identified as compromised,…

[ad_2]

Source link

Related Topics:
Continue Reading