No Festive Break for Security as Attackers Target Almost 300 NPM Packages
Our team detected an attack on npm packages that utilized typosquatting to compromise nearly 300 NPM packages.
Our team detected an attack on npm packages that utilized typosquatting to compromise nearly 300 NPM packages.
Mend Research uncovered an unusual attack in RubyGems that exploited a previously existing package with a significant number of downloads to launch a typosquatting attack.
Monero (XMR) is an open-source, privacy-oriented cryptocurrency that was launched in 2014. It uses a public distributed ledger containing technology that obscures transaction details to ensure the anonymity of its users. Monero maintains egalitarian mining, allowing anyone to participate. As tempting as it may seem, some go a step further and use the infrastructure of...
Mend security team blocked a malicious npm package that uses a novel approach to disguise and execution.