Node JS
fromThe Hacker News
1 month agoRogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems
Three malicious npm packages disguised as a Telegram bot library have been found, containing SSH backdoors and data exfiltration functionalities.