ReversingLabs researchers have discovered a new typosquatting campaign exploiting the NPM platform. Researchers observed a malicious NPM package called node-hide-console-windows delivering the r77 rootkit to innocent users.
Source: HackRead
NPM Typosquatting Attack Deploys r77 Rootkit via Legitimate Package
- Understanding Scattered Spider, and how they perform cloud-centric identity attacks
- Dropbox Sign customer data accessed in breach
- Florida man gets 6 years behind bars for flogging fake Cisco kit to US military
- Patch up – 4 critical bugs in ArubaOS lead to remote code execution
- Menlo Security inks cybersecurity partnership with Google Cloud