| AT2k Design BBS's VADV-PHP Home |
|
|
AT2k Design BBS Message Area
Casually read the BBS message area using an easy to use interface. Messages are categorized exactly like they are on the BBS. You may post new messages or reply to existing messages! You are not logged in. Login here for full access privileges. |
| Previous Message | Next Message | Back to Slashdot <-- <--- | Return to Home Page |
|
||||||
| From | To | Subject | Date/Time | |||
|
VRSS | All | Hackers Hijack npm Packages With 2 Billion Weekly Downloads in S |
September 8, 2025 2:40 PM |
||
Feed: Slashdot Feed Link: https://slashdot.org/ --- Title: Hackers Hijack npm Packages With 2 Billion Weekly Downloads in Supply Chain Attack Link: https://it.slashdot.org/story/25/09/08/184323... An anonymous reader shares a report: In what is being called the largest supply chain attack in history, attackers have injected malware into NPM packages with over 2.6 billion weekly downloads after compromising a maintainer's account in a phishing attack. The package maintainer whose accounts were hijacked in this supply-chain attack confirmed the incident earlier today, stating that he was aware of the compromise and adding that the phishing email came from support [at] npmjs [dot] help, a domain that hosts a website impersonating the legitimate npmjs.com domain. In the emails, the attackers threatened that the targeted maintainers' accounts would be locked on September 10th, 2025, as a scare tactic to get them to click on the link redirecting them to the phishing sites. Read more of this story at Slashdot. --- VRSS v2.1.180528 |
||||||
|
||||||
Slashdot 
| Previous Message | Next Message | Back to Slashdot <-- <--- | Return to Home Page |
Execution Time: 0.0214 seconds If you experience any problems with this website or need help, contact the webmaster. VADV-PHP Copyright © 2002-2025 Steve Winn, Aspect Technologies. All Rights Reserved. Virtual Advanced Copyright © 1995-1997 Roland De Graaf. |