SecBoard
Zurück zur Übersicht
ManagerIT/SaaS

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware

The Hacker News·
Originalartikel lesen bei The Hacker News

A new "coordinated" supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run a Linux binary retrieved from a GitHub Releases URL. "Although the affected packages were all Composer packages, the malicious code was not added to composer.json,"...

MITRE ATT&CK Kill Chain (3 Techniken)

Resource Development
T1587.001

Malware

T1588.001

Malware

Execution
T1059.007

JavaScript

Vollständigen Artikel lesen bei The Hacker News

Verwandte Artikel

Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos

Dark Reading·vor etwa 1 Stunde

Charter confirms data breach after ShinyHunters extortion threat

BleepingComputer·vor etwa 1 Stunde

The Hackers Behind Shai-Hulud: Lucky or Skilled?

Dark Reading·vor etwa 1 Stunde

MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries

The Hacker News·vor etwa 5 Stunden

Identifying People Using Wi-Fi Routers

Schneier on Security·vor etwa 6 Stunden