Skip Navigation

Pulse of Truth @infosec.pub Resident Pulser @infosec.pub

2 wk. ago

Hundreds of code libraries posted to NPM try to install malware on dev machines

arstechnica.com Hundreds of code libraries posted to NPM try to install malware on dev machines

These are not the the developer tools you think they are.

Hundreds of code libraries posted to NPM try to install malware on dev machines

Comments

Programming @programming.dev mox @lemmy.sdf.org 2 wk. ago

Hundreds of code libraries posted to NPM try to install malware on dev machines

arstechnica.com /security/2024/11/javascript-developers-targeted-by-hundreds-of-malicious-code-libraries/

Technology @lemmy.world btaf45 @lemmy.world 2 wk. ago

Hundreds of code libraries posted to NPM try to install malware on dev machines

arstechnica.com /security/2024/11/javascript-developers-targeted-by-hundreds-of-malicious-code-libraries/

Cybersecurity @sh.itjust.works Nemeski @lemm.ee 2 wk. ago

Hundreds of code libraries posted to NPM try to install malware on dev machines

arstechnica.com /security/2024/11/javascript-developers-targeted-by-hundreds-of-malicious-code-libraries/

1 comments

All I ever read about NPM are supply chain attacks. Honest question, why is that so?