On September 15, the Node Package Manager (NPM) repository experienced an ongoing supply chain attack, in which the attackers executed a highly targeted phishing campaign to compromise the account of an NPM package maintainer.
With privileged access, the attackers injected malicious code into widely used JavaScript packages, threatening the entire software ecosystem. Notably, the attack has disrupted several key NPM packages, including those integral to application development and cryptography. According to StepSecurity, the malicious actors behind this incident used similar techniques with the Nx supply chain attack last month. As of September 16, researchers at Socket have already identified close to 500 impacted NPM packages.
Read more…
Source: Trend Micro
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- Cyber crimes in Germany down 6.5% in 2022, federal police say
August 16, 2023
Cyber crimes in Germany fell by 6.5% in 2022, federal police said on Wednesday, but the decline was not a “relief” as the attacks were more severe and those originating from overseas rose by more than 8%. The economic damage was 203 billion euros ($221.59 billion), down slightly from last year, but still double that of ...
- More than 100,000 hackers have details exposed through malware on cyber crime forums
August 15, 2023
Researchers have revealed that more than 100,000 hackers could be operating on compromised devices due to their involvement on cyber crime forums. A study from Hudson Rock identified around 120,000 devices infected with malware that contained login credentials for cyber crime forums. The firm said that many of the individuals operating with compromised machines may have ...
- Discord.io gets taken down after massive data breach
August 15, 2023
Discord.io, a third-party service that helps people generate custom invites for their Discord channels, has been hacked, and information on some 760,000 members stolen. The service has since suspended its operations, and the attacker explained that this is actually a ransom attack – with a twist. As seen on BleepingComputer, a user going by the name ...
- Clorox says certain business operations disrupted in cyber attack
August 14, 2023
Clorox said on Monday it had taken certain systems offline after unauthorized activity disrupted some business operations. It said it was implementing workarounds for certain offline operations in order to continue servicing its customers and had engaged third-party cybersecurity experts to support its investigation and recovery efforts. Read more… Source: MSN News
- Bangladesh Bank warns banks and financial institutions against cyber attacks
August 12, 2023
The Bangladesh Bank has issued out a comprehensive 11-point instruction in a situational alert, urging all banks and financial institutions to bolster their cyber defences. This move comes on the heels of a recent cyber threat targeting the country’s cyber sphere, with potential implications for critical state information infrastructure (CII), including banking, healthcare, and government operations. Read ...
- Connecticut city loses $6 million in multiple cyber attacks on public school district, manages to recoup half
August 11, 2023
The city of New Haven lost more than $6 million in multiple cyberattacks on its public school district earlier this summer and has so far managed to recoup about half of the money, officials announced Thursday. The thefts, which occurred in June and involved hackers impersonating the city’s chief operating officer and private vendors in emails, ...