Solarwinds, Wirespeed & More | Learn how businesses rely on RL for file & Software Security
Customer Stories
The CISO Survival Guide: Operationalizing Third-Party Software Risk Management
Download Now
Your Go-To-Guide: Software Supply Chain Security for Dummies
Get the Guide
July 26, 2021

Tom's Guide: Password-stealing malware hidden in open-source software - what to do

Password-stealing malware hidden in open-source software
A widely used repository is infected with hidden malware

Read more: https://www.tomsguide.com/news/npm-password-stealer

Read ReversingLabs Research here: https://blog.secure.software/groundhog-day-npm-package-caught-stealing-browser-passwords

MORE NEWS

TechRadar: New attacks exploit VSCode extensions and npm packages
News | December 20, 2024
TechRadar: New attacks exploit VSCode extensions and npm packages
Developers targeted by malicious Microsoft VSCode extensions
Read More
Forbes: Warning Crypto Investors—This Malicious Code Could Empty Your Wallet
News | December 20, 2024
Forbes: Warning Crypto Investors—This Malicious Code Could Empty Your Wallet
ReversingLabs explained how attackers often use multiple platforms to spread their malware, creating a more extensive attack surface that targets developers across ecosystems.
Read More
Bleeping Computer: Malicious Microsoft VSCode extensions target devs, crypto community
News | December 20, 2024
Bleeping Computer: Malicious Microsoft VSCode extensions target devs, crypto community
In a report by Reversing Labs, researchers say the malicious extensions first appeared in the VSCode marketplace in October.
Read More