TechRadar

More popular npm packages hijacked to spread malware

A npm package maintainer has fallen victim to a phishing attack The attackers accessed packages and updated them to carry malware Most antivirus programs are still not properly flagging the malicious ...

CISA confirms active exploitation of four enterprise software bugs

The Cybersecurity and Infrastructure Security Agency (CISA) in the U.S. warned of active exploitation of four vulnerabilities ...
Infosecurity-magazine.com

Popular npm Package Compromised in Phishing Attack

A significant security incident involving the widely used npm package “eslint-config-prettier” has been uncovered. The package, downloaded more than 3.5 billion times, was compromised on July 18 after ...
TechRadar

Npm package with millions of downloads is at risk from malware hijacking

A popular npm maintainer fell prey to a phishing attack, sharing login credentials with cybercriminals The attackers accessed their npm account and pushed malware through a popular package They were ...