Over 280 malicious typosquat packages have been unearthed in an ongoing campaign targeting JavaScript developers using the popular npm (Node Package Manager) ecosystem. The attack, which began in late October 2024, is specifically aimed at developers who rely on widely used libraries such as Puppeteer, Bignum.js, and various cryptocurrency libraries, including Ethers.js. This campaign demonstrates the increasing sophistication of supply chain attacks that exploit
The post 280+ Typosquat Malicious Packages Attacking npm Developers appeared first on Cyber Security News. Read More
Posted inNews