Targeted npm Malware Attempts to Steal Company Source Code

blog.phylum.io

cross-posted to:
netsec

Targeted npm Malware Attempts to Steal Company Source Code

blog.phylum.io

L4sBotB to

Security Operations • 2 years ago

cross-posted to:
netsec

Targeted npm Malware Attempts to Steal Company Source Code and Secrets

blog.phylum.io

On July 31, 2023, Phylum's automated risk detection platform alerted us to another series of unusual publications on npm. Within a few hours, we observed the publication of ten different "test" packages. These packages demonstrated increasing functionality and refinement as the attacker seemingly tailored the code for a specific purpose—

Targeted npm Malware Attempts to Steal Company Source Code::On July 31, 2023, Phylum’s automated risk detection platform alerted us to another series of unusual publications on npm. Within a few hours, we observed the publication of ten different “test” packages. These packages demonstrated increasing functionality and refinement as the attacker seemingly tailored the code for a specific purpose—

You must log in or register to comment.

Chat