🏠 Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeiträge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden Überblick über die wichtigsten Aspekte der IT-Sicherheit in einer sich ständig verändernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch übersetzen, erst Englisch auswählen dann wieder Deutsch!

Google Android Playstore Download Button für Team IT Security

800+ IT News als RSS Feed abonnieren

Thema auswählen:

📚 Malicious npm Packages Caught Installing Remote Access Trojans

🕛 Zeit seit Veröffentlichung: 1226 Tage, 6 Stunden 13 Minuten
📆 Veröffentlicht am: 02.12.2020 um 21:10 Uhr
💡 Newskategorie: IT Security Nachrichten
🔗 Quelle: tech.slashdot.org

The security team behind the "npm" repository for JavaScript libraries removed two npm packages this Monday for containing malicious code that installed a remote access trojan (RAT) on the computers of developers working on JavaScript projects. From a report: The name of the two packages was jdb.js and db-json.js., and both were created by the same author and described themselves as tools to help developers work with JSON files typically generated by database applications. Both packages were uploaded on the npm package registry last week and were downloaded more than 100 times before their malicious behavior was detected by Sonatype, a company that scans package repositories on a regular basis. According to Sonatype's Ax Sharma, the two packages contained a malicious script that executed after web developers imported and installed any of the two malicious libraries. The post-install script performed basic reconnaissance of the infected host and then attempted to download and run a file named patch.exe that later installed njRAT, also known as Bladabindi, a very popular remote access trojan that has been used in espionage and data theft operations since 2015.

Sharing is caring on Social Media

📌 On trusting NPM: Early in the month, Lance R. Vick noticed that the maintainer of the NPM foreach package let their personal email domain expire, so they bought it and now “controls foreach on NPM and the 36,826 projects that depend on it”.

🕛 675 Tage, 5 Stunden 38 Minuten
📆 06.06.2022 um 21:38 Uhr
📈 37.32 Punkte

📌 241 npm and PyPI packages caught dropping Linux cryptominers

🕛 601 Tage, 4 Stunden 35 Minuten
📆 19.08.2022 um 22:11 Uhr
📈 37.25 Punkte

📌 Problems trying to installing mailpile on Ubuntu 20.04.2 LTS. I followed the same steps for installation and it says “some packages could not be installed”. And also another response is “unable to correct problems, you have held broken packages”.

🕛 976 Tage, 6 Stunden 8 Minuten
📆 09.08.2021 um 20:23 Uhr
📈 35.36 Punkte

🏠 Team IT Security News

📚 Malicious npm Packages Caught Installing Remote Access Trojans

Sharing is caring on Social Media

Join the Team IT Security Community