{ads}

Malicious npm Packages Target Developers' Ethereum Wallets with SSH Backdoor

Written By Tuesday, 22 October 2024 Add Comment



October 22, 2024 at 03:03PM

Cybersecurity researchers have discovered a number of suspicious packages published to the npm registry that are designed to harvest Ethereum private keys and gain remote access to the machine via the secure shell (SSH) protocol. The packages attempt to "gain SSH access to the victim's machine by writing the attacker’s SSH public key in the root user’s authorized_keys file," software supply

from The Hacker News https://ift.tt/1fiLlcH

0 Response to "Malicious npm Packages Target Developers' Ethereum Wallets with SSH Backdoor"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads