Security News > 2023 > October > Rogue npm Package Deploys Open-Source Rootkit in New Supply Chain Attack
2023-10-04 11:16
A new deceptive package hidden within the npm package registry has been uncovered deploying an open-source rootkit called r77, marking the first time a rogue package has delivered rootkit functionality. The package in question is node-hide-console-windows, which mimics the legitimate npm package node-hide-console-window in what's an instance of a typosquatting campaign. It was downloaded 704
News URL
https://thehackernews.com/2023/10/rogue-npm-package-deploys-open-source.html
Related news
- Chinese State Hackers Target Tibetans with Supply Chain, Watering Hole Attacks (source)
- Hackers Hijack GitHub Accounts in Supply Chain Attack Affecting Top-gg and Others (source)
- XZ Utils Supply Chain Attack: A Threat Actor Spent Two Years to Implement a Linux Backdoor (source)
- New open-source project takeover attacks spotted, stymied (source)
- Protobom: Open-source software supply chain tool (source)