#remote-dynamic-dependencies
#remote-dynamic-dependencies

[ follow ]

NPM flooded with malicious packages downloaded more than 86,000 times

Attackers exploited NPM's Remote Dynamic Dependencies to publish over 100 credential-stealing packages that downloaded unseen malicious code from untrusted servers.

Information security

fromTheregister

3 days ago

npm hit by PhantomRaven supply chain attack

Supply-chain attack PhantomRaven uses Remote Dynamic Dependencies to fetch malicious payloads during npm package installation, stealing credentials and evading static analysis.

[ Load more ]

#remote-dynamic-dependencies#remote-dynamic-dependencies

NPM flooded with malicious packages downloaded more than 86,000 times

npm hit by PhantomRaven supply chain attack

#remote-dynamic-dependencies
#remote-dynamic-dependencies