IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks
Source summary: Multiple software supply chain attacks have hit the npm ecosystem, with threat actors using both malicious and poisoned versions of over 50 legitimate packages to distribute a Rust-based information stealer and a self-spreading worm, respectively. According to JFrog, the information stealer "scrapes every secret it can find on a developer's machine, hides behind an eBPF kernel rootkit, and
Why it matters: Add your own practical explanation here before publishing.
What to do: Add recommended action/checks here.
Need IT help?
Need help with hosting, Cloudflare, backups or IT support? IT Radar UK can point you in the right direction.
Get support