Half of npm Packages Vulnerable to Old-School Weapon: the ‘Shift’ Key

9 May 2023

Since 2017, hackers have been able to mimic legitimate packages on Node Package Manager (npm) by simply removing the capital letters in their titles. According to newly published research from Checkmarx, npm had for years failed to account for this form of typosquatting, which could have led to enterprises inadvertently downloading malware.

Read full article on Dark Reading: Cloud

Date:

9 May 2023

Categorie(s):

NEWS

Tag(s):

Cloud, Keys, Packages, Vulnerable, Weapons

Security budgets are growing, but so is vendor sprawl27 April 2024
The Top 5 Benefits Of Using Outsourcing Services27 April 2024
How To Repair PST Files In Under 5 Minutes Like A Pro27 April 2024
How To Secure Your Snapchat Account27 April 2024
How To Prevent Xiaomi From Spying On You And Stealing Your Data27 April 2024