URL has been copied successfully!
PhantomRaven attack floods npm with credential-stealing packages
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

PhantomRaven attack floods npm with credential-stealing packages


Tags: , , , ,

An active campaign named ‘PhantomRaven’ is targeting developers with dozens of malicious npm packages that steal authentication tokens, CI/CD secrets, and GitHub credentials.

First seen on bleepingcomputer.com

Jump to article: www.bleepingcomputer.com/news/security/phantomraven-attack-floods-npm-with-credential-stealing-packages/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Consent Phishing: The New, Smarter Way to Phish
  2. Prettier-ESLint npm packages hijacked in a sophisticated supply chain attack
  3. Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework
  4. Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework