cognitive cybersecurity intelligence

News and Analysis

Malicious npm Utility Packages Enable Attackers to Wipe Production Systems

Two malicious npm packages, express-api-sync and system-health-sync-api, have been discovered, posing a significant threat to production systems. Published under the npm alias “botsailer,” the packages install backdoors capable of deleting all files within an application. Unlike typical malware, these tools prioritise data destruction over theft, highlighting a growth in software supply chain threats. Socket’s Threat Research Team urges developers to use behavioural scanning tools to detect such threats.

Source: gbhackers.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

News and Analysis

Malicious npm Utility Packages Enable Attackers to Wipe Production Systems

Subscribe to newsletter

More Posts

Week in review: AiTM phishing kit used to hijack AWS accounts, year-long malware campaign targets HR – Help Net Security

Microsoft Releases Out-of-Band Patch to Fix Critical RRAS RCE Vulnerabilities in Windows 11

Hampshire NHS trust praised for cyber security work and transparency – Andover Advertiser

FortiGate Firewalls Exploited in Wave of Attacks to Breach Networks and Steal Credentials

Products

Solutions

Healthcare cybersecurity

Healthcare Threat Intelligence

Use Cases

News and Analysis

Insights

Company