National Cyber Warfare Foundation (NCWF)

Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack


0 user ratings
2024-12-20 09:26:41
milo
Blue Team (CND) , Attacks
The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish malicious versions to the official package registry with cryptocurrency mining malware.
Following the discovery, versions 1.1.7 of both libraries have been unpublished from the npm registry. The latest



Source: TheHackerNews
Source Link: https://thehackernews.com/2024/12/rspack-npm-packages-compromised-with.html


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Blue Team (CND)
Attacks



Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.