URL has been copied successfully!
Malicious npm Package Masquerades as PostCSS Utility to Deliver PowerShell Downloader
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Malicious npm Package Masquerades as PostCSS Utility to Deliver PowerShell Downloader


Tags: , , , ,

A malicious npm package, postcss-minify-selector-parser, has been discovered masquerading as a benign PostCSS utility and delivering a multi-stage Windows remote access trojan (RAT). The imposter deliberately mimics the widely used postcss-selector-parser a legitimate library with more than 150 million weekly downloads by reusing the same keyword space (postcss, selector, parser, css) and depending on the […] The post Malicious npm Package Masquerades as PostCSS Utility to Deliver PowerShell Downloader appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/npm-package-masquerades-as-postcss/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. The 2024 cyberwar playbook: Tricks used by nation-state actors
  2. Russian cyberespionage groups target Signal users with fake group invites
  3. The most notorious and damaging ransomware of all time
  4. Getting the Most Value Out of the OSCP: After the Exam