Hackers Bombard Open Source Repositories with Over 144,000 Malicious Packages,
NuGet, PyPi, and npm ecosystems are the target of a new campaign that has resulted in over 144,000 packages being published by unknown threat actors.
« The packages were part of a new attack vector, with attackers spamming the open-source ecosystem with packages containing links to phishing campaigns, » researchers from Checkmarx and Illustria said in a report published Wednesday.
Of the 144,294
« The packages were part of a new attack vector, with attackers spamming the open-source ecosystem with packages containing links to phishing campaigns, » researchers from Checkmarx and Illustria said in a report published Wednesday.
Of the 144,294
,
NuGet, PyPi, and npm ecosystems are the target of a new campaign that has resulted in over 144,000 packages being published by unknown threat actors.
« The packages were part of a new attack vector, with attackers spamming the open-source ecosystem with packages containing links to phishing campaigns, » researchers from Checkmarx and Illustria said in a report published Wednesday.
Of the 144,294
« The packages were part of a new attack vector, with attackers spamming the open-source ecosystem with packages containing links to phishing campaigns, » researchers from Checkmarx and Illustria said in a report published Wednesday.
Of the 144,294
, ,
https://thehackernews.com/2022/12/hackers-bombard-open-source.html