Techly NewsGet the app

Get the latest tech news

New IronWorm Malware Hits 36 Packages In npm Supply-Chain Attack


A new npm supply-chain attack has infected 36 packages with Rust-based infostealer malware called IronWorm. According to BleepingComputer, the malware "targets 86 environment variables (key-value pairs) and 20 credential files that may contain OpenAI, AWS, Anthropic, and npm credentials, vault confi...

None

Get the Android app

Or read this on Slashdot

Read more on:

Photo of packages

packages

Photo of chain attack

chain attack

Photo of New IronWorm malware

New IronWorm malware

Related news:

News photo

New IronWorm malware hits 36 packages in npm supply-chain attack

News photo

Amazon Japan is now transporting packages on Shinkansen bullet trains

News photo

GitHub links repo breach to TanStack npm supply-chain attack

« Show HN: Formally verified polygon intersection – Opus 4.8 oneshots, prev failed
Premier says no to massive AI data centre proposed for south of Winnipeg — Big AI centres offer little economic benefit while impacting people, environment: Kinew »