"Checkmarx Warns of Unknown Threat Actor Targeting Developers Through NPM Packages"
Researchers at Checkmarx have uncovered a previously unknown threat actor using NPM packages to steal source code and secrets from developers. The threat actor, suspected to have been active since 2021, has published malicious NPM packages designed to exfiltrate sensitive data, such as source code and configuration files, from victim machines. Each malicious package used by the threat actor executes automatically upon installation. The packages each included three files as part of the attack process. This article continues to discuss the targeting of developers through malicious NPM packages.
Submitted by Anonymous
on