Mastodawn

Malicious npm Package Exploits Supply Chain with Multi-Stage Windows RAT

Beware of sneaky impostors in your build dependencies - a recent discovery by JFrog revealed a malicious npm package masquerading as a popular JavaScript tool, hiding a multi-stage Windows remote access trojan. Treat similar-sounding package names with caution, as they could be potential delivery mechanisms for threats.

https://osintsights.com/malicious-npm-package-exploits-supply-chain-with-multi-stage-windows-rat?utm_source=mastodon&utm_medium=social

#SupplyChain #MaliciousNpmPackage #WindowsRat #MultistageThreat #Jfrog

Malicious npm Package Exploits Supply Chain with Multi-Stage Windows RAT

Learn how a malicious npm package exploits supply chains with a multi-stage Windows RAT and protect your project by treating lookalike build dependencies with caution now.

OSINTSights

Analyst207 2d ago

Malicious npm Packages Deliver Windows RAT via PostCSS Tooling

Beware of malicious npm packages masquerading as popular tools like PostCSS - researchers have uncovered three fake packages that have racked up over 1,000 downloads and deliver a sneaky Windows remote access trojan. These lookalike packages, published just over a month ago, have been cleverly designed to fly under the radar.

https://osintsights.com/malicious-npm-packages-deliver-windows-rat-via-postcss-tooling?utm_source=mastodon&utm_medium=social

#MaliciousNpmPackages #WindowsRat #Postcss #SupplyChain #EmergingThreats

Malicious npm Packages Deliver Windows RAT via PostCSS Tooling

Learn how attackers hid a Windows RAT in malicious npm packages via PostCSS tooling and protect your projects now by identifying similar threats today.

OSINTSights