SecBoard
Zurück zur Übersicht
ManagerIT/SaaSAD & Identity

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

The Hacker News·
Originalartikel lesen bei The Hacker News

Cybersecurity researchers have discovered a fresh software supply chain attack campaign that has compromised various npm packages associated with the @antv ecosystem as part of the ongoing Mini Shai-Hulud attack wave. "The attack affects packages tied to the npm maintainer account atool, including...

MITRE ATT&CK Kill Chain (1 Techniken)

Reconnaissance
T1592.002

Software

Vollständigen Artikel lesen bei The Hacker News

Verwandte Artikel

Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos

Dark Reading·vor etwa 1 Stunde

Charter confirms data breach after ShinyHunters extortion threat

BleepingComputer·vor etwa 1 Stunde

The Hackers Behind Shai-Hulud: Lucky or Skilled?

Dark Reading·vor etwa 1 Stunde

MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries

The Hacker News·vor etwa 5 Stunden

Identifying People Using Wi-Fi Routers

Schneier on Security·vor etwa 6 Stunden