Latest News and Articles about Supply-Chain Attack

Microsoft has warned that two public npm packages were caught delivering malware that can steal crypto wallet credentials, keystrokes, screenshots, and other sensitive data, with attackers hiding the exfiltration trail through Hugging Face to make the traffic look less suspicious. Two compromised npm packages — [email protected] and [email protected] Remote access trojan deployed — malware could […]