One Article Review
| Source |  The Hacker News |
|---|---|
| Identifiant | 8285912 |
| Date de publication | 2022-11-30 19:14:00 (vue: 2022-11-30 15:05:47) |
| Titre | Researchers Find a Way Malicious NPM Libraries Can Evade Vulnerability Detection |
| Texte | New findings from cybersecurity firm JFrog show that malware targeting the npm ecosystem can evade security checks by taking advantage of an "unexpected behavior" in the npm command line interface (CLI) tool. npm CLI's install and audit commands have built-in capabilities to check a package and all of its dependencies for known vulnerabilities, effectively acting as a warning mechanism for |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | acting advantage all behavior built can capabilities check checks cli command cybersecurity dependencies detection ecosystem effectively evade find findings firm from interface its jfrog known libraries line malicious malware mechanism new npm package researchers security show s install and audit commands have taking targeting tool unexpected vulnerabilities vulnerability warning way |
| Tags | Malware Vulnerability |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.