this post was submitted on 04 Sep 2023
5 points (100.0% liked)

Security Operations

578 readers
1 users here now

A place for all things Cyber Security, from questions, rants, and stories, to the latest attacks, vulnerabilities, and zero days.

founded 2 years ago
MODERATORS
L3s
5
Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers (blog.phylum.io)
submitted 2 years ago by L4s to c/secops
0 comments fedilink hide all child comments
 

Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers::Phylum has been extremely busy in the past few weeks, reporting on multiple malware campaigns, including malicious updates to npm packages, malware masquerading as a GCC binary, and a package containing a complicated command-and-control setup for data exfiltration.

We monitor open-source ecosystems and analyze every package's source code and metadata

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here