Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Skuld Infostealer Returns to npm with Fake Windows Utilities and Malicious Solara Development Packages
Malware and Vulnerabilities
December 23, 2024
Socket
The threat actor, identified as “k303903” on npm registry, disguised malicious packages — windows-confirm, windows-version-check, downloadsolara, and solara-config — as legitimate tools.
Read More
Skuld Stealer
Information stealer
k303903
Typosquatting
Supply Chain Attack
Publisher
Previous
Flagstar Fined $3.5M for ‘Misleading’ After 2021 Cybera ...
Incident Response, Learnings
Next
Remote Code Execution Vulnerability in Craft CMS, PoC P ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/public_image/cybersecuritydiveed0233e0-019f-4d9b-819b-7138381cc608.webp)
/https://cyware-ent.s3.amazonaws.com/image_bank/4f89_shutterstock_407530147.jpg)
