Angriffsanalyse

SeedSweep: Ten Malicious npm Crypto Packages

09 Juni SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

Erstellt am 11: 12h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Uncover the details of The 24712-pl Campaign and the zero-dependency packages exploited during a security incident....

PairLoop: Hidden Remote-Control Panel in npm Package

05 Juni PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

Erstellt am 11: 48h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Uncover the details of The 24712-pl Campaign and the zero-dependency packages exploited during a security incident....

ConsentMask The npm Package Hiding Developer Identity Harvesting

04 Juni ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

Erstellt am 12: 00h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Uncover the details of The 24712-pl Campaign and the zero-dependency packages exploited during a security incident....

JulesJacker: Fake npm Worm Impersonates Jules AI

Mai 29 JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

Erstellt am 11: 58h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Uncover the details of The 24712-pl Campaign and the zero-dependency packages exploited during a security incident....

RuntimeBroker npm Typosquat Plants Crypto Clipper

Mai 22 RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

Erstellt am 12: 52h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Uncover the details of The 24712-pl Campaign and the zero-dependency packages exploited during a security incident....

Mai 21 AuditorTrap: A 22-Package Fake Crypto Security Guild on npm With Two Parallel Payloads

Erstellt am 12: 18h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Uncover the details of The 24712-pl Campaign and the zero-dependency packages exploited during a security incident....

PhantomBot From Credential Theft to Botnet

Mai 18 PhantomBot: A Typosquat Campaign That Pivoted From Credential Theft to a Turnkey Botnet Kit

Erstellt am 09: 44h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Uncover the details of The 24712-pl Campaign and the zero-dependency packages exploited during a security incident....

Mai 08 AWS Lambda npm Dependency Confusion Attack: The 24712-pl Campaign

Erstellt am 12: 44h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Uncover the details of The 24712-pl Campaign and the zero-dependency packages exploited during a security incident....

Mai 07 alone5511 npm Abhängigkeitsverwirrungsangriff

Erstellt am 14: 39h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

An npm dependency confusion attack used eight malicious packages to fingerprint hosts and send RCE telemetry to Telegram....

Mai 06 EVM/DeFi npm Typosquatting-Angriff stiehlt Entwicklerschlüssel

Erstellt am 14: 58h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

A npm typosquatting attack used six malicious EVM/DeFi packages to steal developer keys, wallets, secrets, and .env files....

FauxCode: Wenn Ihr per Reverse Engineering erstellter Claude-Code unbemerkt den Angreifer passiert

Mai 04 FauxCode: Reverse-Engineered Claude Code Routen durch Angreifer

Erstellt am 19: 37h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

Die Malware FauxCode Claude Code npm nutzte gefälschte CLI-Pakete, um API-Datenverkehr mittels CA-Bundle-MITM und Basis-URL-Hijacking abzufangen.

Mai 04 DevTap-npm-Typosquatting-Angriff: Sechs bösartige Pakete zielen auf Entwickler-Workstations ab

Erstellt am 18: 43h in Angriffsanalyse, Muss Man Lesen, Secrets Security by Xygeni-Sicherheitsteam 0 Kommentare

DevTap nutzte bei einem npm-Typosquatting-Angriff sechs bösartige Pakete, um Entwickler-Workstations auszuspionieren und das npm-Vertrauen zu missbrauchen.

Angriffsanalyse

09 Juni SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

05 Juni PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

04 Juni ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

Mai 29 JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

Mai 22 RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

Mai 21 AuditorTrap: A 22-Package Fake Crypto Security Guild on npm With Two Parallel Payloads

Mai 18 PhantomBot: A Typosquat Campaign That Pivoted From Credential Theft to a Turnkey Botnet Kit

Mai 08 AWS Lambda npm Dependency Confusion Attack: The 24712-pl Campaign

Mai 07 alone5511 npm Abhängigkeitsverwirrungsangriff

Mai 06 EVM/DeFi npm Typosquatting-Angriff stiehlt Entwicklerschlüssel

Mai 04 FauxCode: Reverse-Engineered Claude Code Routen durch Angreifer

Mai 04 DevTap-npm-Typosquatting-Angriff: Sechs bösartige Pakete zielen auf Entwickler-Workstations ab

Produkte

Ressourcen

Unternehmen

Rechtliches