Malicious Rspack, Vant packages published using stolen NPM tokens

Three popular npm packages, @rspack/core, @rspack/cli, and Vant, were compromised through stolen npm account tokens, allowing threat actors to publish malicious versions that installed cryptominers. [...] Read More

December 20, 2024

Three popular npm packages, @rspack/core, @rspack/cli, and Vant, were compromised through stolen npm account tokens, allowing threat actors to publish malicious versions that installed cryptominers. […] Read More

About The Author

See author's posts

Related Stories

The quiet revolution: How regulation is forcing cybersecurity accountability

Russian Hacking Group Sandworm Deploys New Wiper Malware in Ukraine

Hidden Logic Bombs in Malware-Laced NuGet Packages Set to Detonate Years After Installation