#typosquatting

[ follow ]
#cybersecurity

Thousands Download Malicious npm Libraries Impersonating Legitimate Tools

Malicious typosquats of legitimate npm packages have been discovered, posing significant risks to developers.

Hundreds of code libraries posted to NPM try to install malware on dev machines

Malicious packages can be traced via the immutable Ethereum blockchain, revealing a history of IP addresses used by attackers.

Hackers abuse NPM code registries via Ethereum network

NPM registries are under attack from malicious packages leveraging typosquatting, targeting developers' systems.
287 malicious packages discovered affect prominent libraries.
Hackers utilize Ethereum smart contracts to obscure their true origins.

New research: Malicious actors are imitating tech companies

Malicious actors are increasingly using typosquatting to impersonate tech companies and compromise corporate systems.

Malicious Python Package Index steals Amazon Web Services credentials

A malicious Python package called 'fabrice' has exfiltrated AWS credentials, highlighting the risks of typosquatting in the developer community.

Malicious Ads in Search Results Are Driving New Generations of Scams

Malicious ads mimicking legitimate businesses pose a significant risk as attackers exploit search engine ad space, despite efforts by Google to mitigate this threat.

Thousands Download Malicious npm Libraries Impersonating Legitimate Tools

Malicious typosquats of legitimate npm packages have been discovered, posing significant risks to developers.

Hundreds of code libraries posted to NPM try to install malware on dev machines

Malicious packages can be traced via the immutable Ethereum blockchain, revealing a history of IP addresses used by attackers.

Hackers abuse NPM code registries via Ethereum network

NPM registries are under attack from malicious packages leveraging typosquatting, targeting developers' systems.
287 malicious packages discovered affect prominent libraries.
Hackers utilize Ethereum smart contracts to obscure their true origins.

New research: Malicious actors are imitating tech companies

Malicious actors are increasingly using typosquatting to impersonate tech companies and compromise corporate systems.

Malicious Python Package Index steals Amazon Web Services credentials

A malicious Python package called 'fabrice' has exfiltrated AWS credentials, highlighting the risks of typosquatting in the developer community.

Malicious Ads in Search Results Are Driving New Generations of Scams

Malicious ads mimicking legitimate businesses pose a significant risk as attackers exploit search engine ad space, despite efforts by Google to mitigate this threat.
morecybersecurity

Scammers are making thousands of dollars through blockchain typosquatting

Typosquatting scams in crypto are exploiting small typing errors, resulting in significant financial losses for unsuspecting senders.
#malware

Typosquat campaign impersonates 287+ popular npm packages

A typosquatting campaign targets developers by distributing malicious npm packages disguised as popular libraries, complicating detection through new blockchain-based command control.

PyPI suspends registrations amid malware attack

PyPI has suspended new project creation due to a malware upload campaign.
Attackers are using typosquatting to distribute malicious Python packages for data theft.

Typosquat campaign impersonates 287+ popular npm packages

A typosquatting campaign targets developers by distributing malicious npm packages disguised as popular libraries, complicating detection through new blockchain-based command control.

PyPI suspends registrations amid malware attack

PyPI has suspended new project creation due to a malware upload campaign.
Attackers are using typosquatting to distribute malicious Python packages for data theft.
moremalware
[ Load more ]