On September 15, the Node Package Manager (NPM) repository experienced an ongoing supply chain attack, in which the attackers executed a highly targeted phishing campaign to compromise the account of an NPM package maintainer.
With privileged access, the attackers injected malicious code into widely used JavaScript packages, threatening the entire software ecosystem. Notably, the attack has disrupted several key NPM packages, including those integral to application development and cryptography. According to StepSecurity, the malicious actors behind this incident used similar techniques with the Nx supply chain attack last month. As of September 16, researchers at Socket have already identified close to 500 impacted NPM packages.
Read more…
Source: Trend Micro
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- UK: NHS Dumfries and Galloway hit by cyber attack with ‘significant quantity’ of data at risk
March 15, 2024
NHS Dumfries and Galloway has been hit by a cyber attack, with the health board saying a “significant quantity” of data has been put at risk and services could potentially be disrupted. In a statement posted to its website on Friday, the board said the attack was “focused and ongoing” and the files accessed could include ...
- Vietnam: Over 1,800 cyber attacks detected in Q1
March 15, 2024
As many as 1,812 cyber attacks were detected in Vietnam so far this year, a drop of 38% compared to the same period last year, according to the Ministry of Information and Communications (MIC). A newly released report by the ministry shows that the information security industry in Vietnam got an estimated revenue of 804 billion ...
- Ransomware’s appetite for US healthcare sees known attacks double in a year
March 15, 2024
Following the February 21 attack on Change Healthcare, scores of people in the US have been living with the brutal, real-world effects of ransomware. Described by the American Hospital Association (AHA) President and CEO Rick Pollack as “the most significant and consequential incident of its kind against the US health care system in history,” the attack ...
- Member of LockBit ransomware group sentenced to 4 years in prison
March 14, 2024
A dual Canadian-Russian national has been sentenced to four years in prison for his role in infecting more than 1,000 victims with the LockBit ransomware and then extorting them for tens of millions of dollars. Mikhail Vasiliev, a 33-year-old who most recently lived in Ontario, Canada, was arrested in November 2022 and charged with conspiring to ...
- Cybercrime Atlas: International effort to disrupt cybercrime moves into operational phase
March 14, 2024
The Cybercrime Atlas, a massive undertaking that aims to disrupt cybercriminals across the globe, enters its operational phase in 2024, two years after organizers laid the groundwork at the RSA Conference.… Its members now include 20-plus law enforcement agencies, private-sector security companies and incident responders, financial institutions, NGOs, and academics. Over the past year, the investigations ...
- Businesses leaving their Kubernetes containers exposed to ransomware
March 14, 2024
As businesses look for faster and more flexible development frameworks, the use of containers and Kubernetes (K8s) continues to rise. While Kubernetes theoretically has several security advantages compared to traditional applications, it remains one of the top concerns for organizations on their cloud-native journey. This concern is fairly valid it seems. A recent report found that ...