On September 15, the Node Package Manager (NPM) repository experienced an ongoing supply chain attack, in which the attackers executed a highly targeted phishing campaign to compromise the account of an NPM package maintainer.
With privileged access, the attackers injected malicious code into widely used JavaScript packages, threatening the entire software ecosystem. Notably, the attack has disrupted several key NPM packages, including those integral to application development and cryptography. According to StepSecurity, the malicious actors behind this incident used similar techniques with the Nx supply chain attack last month. As of September 16, researchers at Socket have already identified close to 500 impacted NPM packages.
Read more…
Source: Trend Micro
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- Israeli hacker group takes responsibility for reported collapse of Wi-Fi in Iran
August 2, 2024
The Israeli hacker group, “We Red Evils Original”, took responsibility for reported WiFi outages in Iran, according to Israeli media on Thursday night. Shortly before reports in Iran, the group posted a message on their Telegram saying, ‘In the coming minutes, we will attack internet systems and providers in Iran. A severe blow is on the ...
- How “professional” ransomware variants boost cybercrime groups
August 1, 2024
Cybercriminals who specialize in ransomware do not always create it themselves. They have many other ways to get their hands on ransomware samples: buying a sample on the dark web, affiliating with other groups or finding a (leaked) ransomware variant. This requires no extraordinary effort, as source code is often leaked or published. With a set ...
- Report finds Apple devices fare the worst when it comes to full takeover risks
August 1, 2024
A worrying number of environments are vulnerable to complete takeover via escalated privileges, a new report from Picus Security has found. Environments were tested in simulated attacks, with the average organization managing to defend against 7 out of 10 attacks, but considering the constant threat presented by organized cybercrime groups, this leaves a serious margin for potential ...
- FBI Warns of Scammers Impersonating Cryptocurrency Exchanges
August 1, 2024
The FBI warns of scammers impersonating cryptocurrency exchange employees to steal funds. How the scam works: The scammer contacts the victim via an unsolicited call or message and pretends to be a cryptocurrency exchange employee. The scammer conveys urgency and may claim there is a problem with the victim’s account, or someone is attempting to compromise the victim’s ...
- OneBlood hit by ransomware attack, tells hospitals to activate critical shortage alerts
August 1, 2024
Nonprofit medical organization OneBlood, which plays a crucial role in serving facilities across the Southeastern US, has been targeted in a ransomware attack which caused an IT systems outage, causingover 250 hospitals to activate critical blood shortage protocols. The move disrupted services across multiple US states, with the organization operating at a ‘significantly reduced capacity’ – ...
- Malicious Packages Hidden in PyPI
July 31, 2024
The FortiGuard Labs team has identified a malicious PyPI package affecting all platforms where PyPI packages can be installed. This discovery poses a significant risk to individuals and institutions that have installed these packages, potentially leading to the leakage of credentials and sensitive information. Given the high severity of this threat, it is crucial to focus ...