npm

Advanced npm assault makes use of 7-plus layers of obfuscation to unfold Pulsar RAT – Model Slux

by
Advanced npm assault makes use of 7-plus layers of obfuscation to unfold Pulsar RAT – Model Slux

A malicious npm bundle referred to as “solders” makes use of greater than half a dozen layers of obfuscation in a convoluted, multistage assault to unfold Pulsar RAT, Veracode researchers reported Monday.The assault begins with a postinstall hook that runs the file lib.js as quickly because the bundle is put in, not requiring additional person … Read more

Pretend npm utilities remotely delete whole app directories – Model Slux

by
Pretend npm utilities remotely delete whole app directories – Model Slux

Malicious npm packages posing as respectable utility utilities create damaging backdoor endpoints that allow distant deletion of app directories, Socket reported Thursday.The packages — express-api-sync and system-health-sync-api — have been printed by npm person botsailer on June 3, 2025, and have since been eliminated by npm attributable to malicious code.Specific-api-sync presupposed to function a easy … Read more

x