Security News > 2018 > November > Check your repos... Crypto-coin-stealing code sneaks into fairly popular NPM lib (2m downloads per week)

Check your repos... Crypto-coin-stealing code sneaks into fairly popular NPM lib (2m downloads per week)
2018-11-26 20:58

Node.js package tried to plunder Bitcoin wallets A widely used Node.js code library in NPM's warehouse of repositories was altered to include crypto-coin-stealing malware. The lib in question, event-stream, is downloaded roughly two million times a week by application programmers.…


News URL

http://go.theregister.com/feed/www.theregister.co.uk/2018/11/26/npm_repo_bitcoin_stealer/