NPM JavaScript registry suffers massive influx of malware, report says - Cyber Security News

Read Time:29 Second

The popular NPM JavaScript package manager and registry has been hit with an influx of malicious packages, the most harmful of which are related to data theft, crypto mining, botnets, and remote code execution, according to research from security company WhiteSource.

WhiteSource’s automated malware detection platform, WhiteSource Diffend, detected a total of 1,300 malicious packages on NPM, within a period of six months ended December 2021.

All the malicious packages identified by WhiteSource were notified to NPM and were subsequently removed from the package registry.

To read this article in full, please click here

More Stories

Third of UK Supply Chain Relies on “Chinese Military” Companies

Bitsight reveals that UK companies are more exposed to cyber risk than global peers via their digital supply chains Read...

Mandatory Coinbase wallet migration? It’s a phishing scam!

An ingenious phishing scam is targeting cryptocurrency investors, by posing as a mandatory wallet migration. Read more in my article...

Compliance without Complexity

Evolving Regulatory Requirements Governments across the globe have introduced new legislation to address the escalating risks of cybersecurity threats. In...

Cloudflare Introduces E2E Post-Quantum Cryptography Protections

Cloudflare introduces E2E post-quantum cryptography, enhancing security against quantum threats Read More

UK’s Online Safety Act: Ofcom Can Now Issue Sanctions

From March 17, Ofcom will enforce rules requiring tech platforms operating in the UK to remove illegal content, including child...

Researchers Confirm BlackLock as Eldorado Rebrand

DarkAtlas researchers have uncovered a direct link between BlackLock and the Eldorado ransomware group, confirming a rebranded identity of the...