New Supply Chain Malware Operation Hits npm and PyPI Ecosystems, Targeting Millions Globally
Sunday, 8 June 2025
Add Comment
Cybersecurity researchers have flagged a supply chain attack targeting over a dozen packages associated with GlueStack to deliver malware. The malware, introduced via a change to "lib/commonjs/index.js," allows an attacker to run shell commands, take screenshots, and upload files to infected machines, Aikido Security told The Hacker News, stating these packages collectively account for nearly 1
from The Hacker News https://ift.tt/BdnRzcC
Genrerating Link.... 15 seconds.
Your Link is Ready.
0 Response to "New Supply Chain Malware Operation Hits npm and PyPI Ecosystems, Targeting Millions Globally"
Post a Comment