Techly NewsGet the app

Get the latest tech news

Malware found on NPM infecting local package with reverse shell


For the first time, RL researchers discover malicious locally-installed npm packages infecting other legitimate packages.

RL’s Spectra platform finds obfuscated or non-obfuscated — and clearly malicious code — lurking in install scripts by identifying behaviors and characteristics when scanning both open- source and commercial, closed-source binaries. source = "ReversingLabs" category = "MALWARE" description = "Yara rule that detects if there is a malicious payload injected in legitimate locally installed npm package ethers." This latest campaign is evidence that the risk of downloading malware and compromising development environments and networks remains high, while novel ways of serving malicious payloads are emerging.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of malware

malware

Photo of npm

npm

Photo of local package

local package

Related news:

News photo

New npm attack poisons local packages with backdoors

News photo

FBI warnings are true—fake file converters do push malware

News photo

Valve removes video game demo suspected of being malware

« Samsung Neo QLED TVs are now available, with prices starting at $1,300
Botswana launches first satellite BOTSAT-1 aboard SpaceX Falcon 9 »