Malware found in npm package with millions of weekly downloads

[correlate] · Oct 23, 2021

A massively popular JavaScript library (npm package) was hacked today and modified with malicious code that downloaded and installed a cryptocurrency miner on systems where the compromised versions were installed.

Malware found in npm package with millions of weekly downloads

-

therecord.media

LASER_oneXM · Oct 23, 2021

Popular NPM library hijacked to install password-stealers, miners

Hackers hijacked the popular UA-Parser-JS NPM library, with millions of downloads a week, to infect Linux and Windows devices with cryptominers and password-stealing trojans in a supply-chain attack.

www.bleepingcomputer.com

Search

Search

Malware found in npm package with millions of weekly downloads

[correlate]

Level 18

Malware found in npm package with millions of weekly downloads

LASER_oneXM

Level 37

Popular NPM library hijacked to install password-stealers, miners

You may also like...