National Cyber Warfare Foundation (NCWF) Forums


Crypto enthusiasts flood npm with more than 281,000 bogus packages overnight
0 user ratings		2024-08-19 23:10:25
milo
Developers , Blue Team (CND) , Education , Crypto Currency
 - archive -- 

Crypto enthusiasts flood npm with more than 281,000 bogus packages overnight

Crypto enthusiasts have lately been flooding software registries like npm and PyPI with thousands of bogus packages that add no functional value and instead put a strain on the entire open source ecosystem.


A single instance, recorded by Sonatype in July 2024, saw 281,512 distinct packages appearing on the npmjs.com registry overnight — each package named a gibberish Latin phrase akin to Lorem Ipsum. 


The post Crypto enthusiasts flood npm with more than 281,000 bogus packages overnight appeared first on Security Boulevard.



Ax Sharma

Source: Security Boulevard
Source Link: https://securityboulevard.com/2024/08/crypto-enthusiasts-flood-npm-with-more-than-281000-bogus-packages-overnight/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Developers
Blue Team (CND)
Education
Crypto Currency


Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.