The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.
腾讯网

Trivy供应链攻击引发CanisterWorm蠕虫病毒传播至47个npm包

针对流行扫描工具Trivy的供应链攻击背后的威胁行为者,被怀疑正在进行后续攻击,导致大量npm包遭到破坏,其中包含一个此前未被记录的自传播蠕虫病毒,名为CanisterWorm。
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

Infostealer threats are rapidly expanding beyond traditional Windows-focused campaigns, increasingly targeting macOS environments, leveraging cross-platform languages such as Python, and abusing ...