Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Thousands Download Malicious npm Libraries Impersonating Legitimate Tools
Malware and Vulnerabilities
December 21, 2024
The Hacker News
Threat actors have been observed uploading malicious typosquats of legitimate npm packages such as typescript-eslint and @types/node that have racked up thousands of downloads on the package registry.
Read More
Typosquatting
Supply Chain Attack
types-node
TypeScript ESLint Plugin
GitHub Repository
Publisher
Previous
Hackers Exploiting Linux eBPF to Spread Malware in Ongo ...
Malware and Vulnerabilities
Next
Phishing Campaign Abusing HubSpot Targets 20,000 Micros ...
Identity Theft, Fraud, Scams
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_424451719.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/2801_shutterstock_2389499143.jpg)
