National Cyber Warfare Foundation (NCWF)

New Supply Chain Attack Compromises Popular npm Package with 45,000 Weekly Downloads
0 user ratings		2025-05-09 13:12:05
milo
Red Team (CNA)

An advanced supply chain attack has targeted the well-known npm package rand-user-agent, which receives about 45,000 downloads every week, in a worrying development for the JavaScript developer community. Maintained by WebScrapingAPI, this package is designed to generate randomized, real-world user-agent strings based on their frequency of occurrence. However, recent analysis has uncovered malicious code embedded […]


The post New Supply Chain Attack Compromises Popular npm Package with 45,000 Weekly Downloads appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Aman Mishra

Source: gbHackers
Source Link: https://gbhackers.com/new-supply-chain-attack-compromises-popular-npm-package/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.