URL has been copied successfully!
Supply chain attack hits npm package with 45,000 weekly downloads
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Supply chain attack hits npm package with 45,000 weekly downloads


Tags: , ,

An npm package named ‘rand-user-agent’ has been compromised in a supply chain attack to inject obfuscated code that activates a remote access trojan (RAT) on the user’s system.

First seen on bleepingcomputer.com

Jump to article: www.bleepingcomputer.com/news/security/supply-chain-attack-hits-npm-package-with-45-000-weekly-downloads/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Data Security Predictions for 2025: Putting Protection and Resilience at Center Stage
  2. VeraCore zero-day vulnerabilities exploited in supply chain attacks
  3. FCC creates national security council to counter cyber threats from China
  4. Cybersecurity Snapshot: SANS Recommends Six Controls To Secure AI Systems, While NCSC Warns About Outdated API Security Methods