Security
Headlines
HeadlinesLatestCVEs

Headline

Malicious NPM Packages Caught Running Cryptominer On Windows, Linux, macOS Devices

Three JavaScript libraries uploaded to the official NPM package repository have been unmasked as crypto-mining malware, once again demonstrating how open-source software package repositories are becoming a lucrative target for executing an array of attacks on Windows, macOS, and Linux systems. The malicious packages in question — named okhsa, klow, and klown — were published by the same

The Hacker News
Open in Source
#The Hacker News#nodejs#js#java#microsoft#cisco#git#microsoft#git#vulnerability#vulnerability#windows#mac#windows#linux#nodejs#java

Related news

ECOA Building Automation System Hidden Backdoor Accounts and backdoor() Function

The BAS controller has hidden backdoors in several binaries that serve the web application. Any unauthenticated attacker can download all the resources and binaries/services that serve the controller and search for the 'backdoor()' function in httpser.elf as well as discover hidden credentials for backdoor access with full functionality of the Smart Home, Access Control and Building Automation System solutions.

The Hacker News: Latest News

APT-K-47 Uses Hajj-Themed Lures to Deliver Advanced Asyncshell Malware
The Hacker News