WHAT ARE YOU LOOKING FOR?

NPM package ‘is’ with 2.8M weekly downloads infected devs with malware

Roger Wilco Vulnerabilities 23 juillet 2025 Affichages : 104

The popular NPM package 'is' has been compromised in a supply chain attack that injected backdoor malware, giving attackers full access to compromised devices. [...]

Pensée du jour :

Ce que l'homme a fait ,

l'homme peut le défaire.

"No secure path in the world"

WHAT ARE YOU LOOKING FOR?

NPM package ‘is’ with 2.8M weekly downloads infected devs with malware

Follow us on

Most popular

AA22-117A: 2021 Top Routinely Exploited Vulnerabilities

AA19-122A: New Exploits for Unsecure SAP Systems

Bugtraq: Cisco Unified Contact Center Express Privilege Escalation Vulnerability (CVE-2019-1888)

Vuln: Jenkins Credentials Binding Plugin CVE-2019-1010241 Information Disclosure Vulnerability

Bugtraq: Web Application Firewall bypass via Bluecoat device

Vuln: Qualcomm Components CVE-2019-2307 Integer Underflow Vulnerability

Category

Popular Sections

About