One Article Review
| Source |  The Hacker News |
|---|---|
| Identifiant | 8618142 |
| Date de publication | 2024-11-28 16:18:00 (vue: 2024-11-28 11:07:59) |
| Titre | XMLRPC npm Library Turns Malicious, Steals Data, Deploys Crypto Miner |
| Texte | Cybersecurity researchers have discovered a software supply chain attack that has remained active for over a year on the npm package registry by starting off as an innocuous library and later adding malicious code to steal sensitive data and mine cryptocurrency on infected systems.
The package, named @0xengine/xmlrpc, was originally published on October 2, 2023 as a JavaScript-based XML-RPC
Cybersecurity researchers have discovered a software supply chain attack that has remained active for over a year on the npm package registry by starting off as an innocuous library and later adding malicious code to steal sensitive data and mine cryptocurrency on infected systems. The package, named @0xengine/xmlrpc, was originally published on October 2, 2023 as a JavaScript-based XML-RPC |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 2023 @0xengine/xmlrpc active adding attack based chain code crypto cryptocurrency cybersecurity data deploys discovered has have infected innocuous javascript later library malicious mine miner named npm october off originally over package published registry remained researchers rpc sensitive software starting steal steals supply systems turns xml xmlrpc year |
| Tags | |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.