Solarwinds, Wirespeed & More | Learn how businesses rely on RL for file & Software Security
Customer Stories
The CISO Survival Guide: Operationalizing Third-Party Software Risk Management
Download Now
Your Go-To-Guide: Software Supply Chain Security for Dummies
Get the Guide
July 22, 2021

The Hacker News: Malicious NPM Package Caught Stealing Users' Saved Passwords From Browsers

The Hacker News - Malicious NPM Package
A software package available from the official NPM repository has been revealed to be actually a front for a tool that's designed to steal saved passwords from the Chrome web browser.

Read more: https://thehackernews.com/2021/07/malicious-npm-package-caught-stealing.html

Read ReversingLabs Research here: https://blog.secure.software/groundhog-day-npm-package-caught-stealing-browser-passwords

MORE NEWS

TechRadar: New attacks exploit VSCode extensions and npm packages
News | December 20, 2024
TechRadar: New attacks exploit VSCode extensions and npm packages
Developers targeted by malicious Microsoft VSCode extensions
Read More
Forbes: Warning Crypto Investors—This Malicious Code Could Empty Your Wallet
News | December 20, 2024
Forbes: Warning Crypto Investors—This Malicious Code Could Empty Your Wallet
ReversingLabs explained how attackers often use multiple platforms to spread their malware, creating a more extensive attack surface that targets developers across ecosystems.
Read More
Bleeping Computer: Malicious Microsoft VSCode extensions target devs, crypto community
News | December 20, 2024
Bleeping Computer: Malicious Microsoft VSCode extensions target devs, crypto community
In a report by Reversing Labs, researchers say the malicious extensions first appeared in the VSCode marketplace in October.
Read More