Article 6RZQT Hundreds of code libraries posted to NPM try to install malware on dev machines

Hundreds of code libraries posted to NPM try to install malware on dev machines

by
Dan Goodin
from Ars Technica - All content on (#6RZQT)
Story Image

An ongoing attack is uploading hundreds of malicious packages to the open source node package manager (NPM) repository in an attempt to infect the devices of developers who rely on code libraries there, researchers said.

The malicious packages have names that are similar to legitimate ones for the Puppeteer and Bignum.js code libraries and for various libraries for working with cryptocurrency. The campaign, which was active at the time this post was going live on Ars, was reported by researchers from the security firm Phylum. The discovery comes on the heels of a similar campaign a few weeks ago targeting developers using forks of the Ethers.js library.

Beware of the supply chain attack

Out of necessity, malware authors have had to endeavor to find more novel ways to hide intent and to obfuscate remote servers under their control," Phylum researchers wrote. This is, once again, a persistent reminder that supply chain attacks are alive and well."

Read full article

Comments

External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments