One Article Review
| Source |  The Hacker News |
|---|---|
| Identifiant | 8632657 |
| Date de publication | 2025-01-02 13:15:00 (vue: 2025-01-02 09:07:59) |
| Titre | Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT |
| Texte | Cybersecurity researchers have discovered a malicious package on the npm package registry that masquerades as a library for detecting vulnerabilities in Ethereum smart contracts but, in reality, drops an open-source remote access trojan called Quasar RAT onto developer systems.
The heavily obfuscated package, named ethereumvulncontracthandler, was published to npm on December 18, 2024, by a user
Cybersecurity researchers have discovered a malicious package on the npm package registry that masquerades as a library for detecting vulnerabilities in Ethereum smart contracts but, in reality, drops an open-source remote access trojan called Quasar RAT onto developer systems. The heavily obfuscated package, named ethereumvulncontracthandler, was published to npm on December 18, 2024, by a user |
| Notes | ★★ |
| Envoyé | Oui |
| Condensat | 2024 access but called contracts cybersecurity december deploys detecting developer discovered disguised drops ethereum ethereumvulncontracthandler have heavily library malicious masquerades named npm obfuscated onto open package published quasar rat reality registry remote researchers smart source systems tool trojan user vulnerabilities |
| Tags | Tool Vulnerability |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ressemble à 1 autre(s) article(s):
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2025-01-03 11:08:25 | (Déjà vu) NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT (lien direct) | Researchers discovered a malicious package on the npm package registry that resembles a library for Ethereum smart contract vulnerabilities but actually drops an open-source remote access trojan called Quasar RAT onto developer systems.
Researchers discovered a malicious package on the npm package registry that resembles a library for Ethereum smart contract vulnerabilities but actually drops an open-source remote access trojan called Quasar RAT onto developer systems. |
Tool Vulnerability | ★★ |