Security researchers at ReversingLabs have identified a new malware attack on the npm package repository. The attack involves modifying two packages, ethers-provider2 and ethers-providerz, which work to ‘patch’ the popular Ethereum package, ethers, with a malicious file. This allows attackers to gain access to compromised systems. The attack is distinctive for the extensive lengths taken to hide the payload and cover its tracks.
What are the cost implications of maintaining NHI compliance?
Securing cloud environments against potential threats is a crucial undertaking, with effective management of Non-Human Identities (NHIs) being a significant part of this effort. Viewing
