Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Malware and Vulnerabilities
November 27, 2024
Socket
The malicious packages—babelcl, chokader, streamserch, sss2h, npmrunnall, and node-pyt—were crafted by the threat actor “sanchezjosephine180” to resemble well-known npm libraries such as babel-cli, chokidar, and ssh2.
Read More
Typosquatting
SSH backdoor
Linux Systems
SSH access
sanchezjosephine180
Publisher
Previous
Source Code of Banshee Stealer Leaked Online
Malware and Vulnerabilities
Next
Matrix Botnet Exploits IoT Devices in Widespread DDoS B ...
Threat Actors
/https://cyware-ent.s3.amazonaws.com/image_bank/f4d7_shutterstock_1242117157_2.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/b5c4_shutterstock_1239996568.jpg)
