Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Hackers Use Malicious NPM packages to Target Amazon, Slack with New Dependency Attacks
Malware and Vulnerabilities
March 02, 2021
Bleeping Computer
Threat actors are targeting Amazon, Zillow, Lyft, and Slack NodeJS apps using a new 'Dependency Confusion' vulnerability to steal Linux/Unix password files and open reverse shells back to the attackers.
Read More
Amazon
Slack
Zillow
Lyft
Dependency Confusion
Publisher
Previous
Fitness Studio Management Platform Leaks Over 1.5 Milli ...
Breaches and Incidents
Next
Google: Bad bots are on the attack, and your defence pl ...
Trends, Reports, Analysis
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_234954166.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/0f55_shutterstock_1283239612.jpg)
