Information security
fromtheregister
15 hours agoLone attacker published 14 malicious npm packages mimicking popular OpenSearch, Elasticsearch libraries
A single npm user published 14 malicious packages impersonating OpenSearch/Elasticsearch libraries to steal AWS, Vault, and CI/CD secrets.