{"id":1744,"date":"2021-11-06T04:18:12","date_gmt":"2021-11-05T20:18:12","guid":{"rendered":"https:\/\/tongwing.woon.sg\/blog\/?p=1744"},"modified":"2021-11-06T04:18:12","modified_gmt":"2021-11-05T20:18:12","slug":"malware-found-in-coa-and-rc-two-npm-packages-with-23m-weekly-downloads","status":"publish","type":"post","link":"https:\/\/tongwing.woon.sg\/blog\/malware-found-in-coa-and-rc-two-npm-packages-with-23m-weekly-downloads\/","title":{"rendered":"Malware found in coa and rc, two npm packages with 23M weekly downloads"},"content":{"rendered":"<p>It&#8217;s a worrying trend to see more and more hijacking of popular packages to spread malware. The threat actor apparently gained access to the packager maintainers account and inserted a post install script to download malware. <\/p>\n<blockquote><p>The security team of the npm JavaScript package manager has warned users that two of its most popular packages had been hijacked by a threat actor who released new versions laced with what appeared to be password-stealing malware.<\/p><\/blockquote>\n<p>Source: <em><a href=\"https:\/\/therecord.media\/malware-found-in-coa-and-rc-two-npm-packages-with-23m-weekly-downloads\/\">Malware found in coa and rc, two npm packages with 23M weekly downloads<\/a><\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>It&#8217;s a worrying trend to see more and more hijacking of popular packages to spread malware. The threat actor apparently gained access to the packager maintainers account and inserted a post install script to download malware. The security team of the npm JavaScript package manager has warned users that two of its most popular packages [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16,10],"tags":[],"_links":{"self":[{"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/posts\/1744"}],"collection":[{"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/comments?post=1744"}],"version-history":[{"count":1,"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/posts\/1744\/revisions"}],"predecessor-version":[{"id":1745,"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/posts\/1744\/revisions\/1745"}],"wp:attachment":[{"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/media?parent=1744"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/categories?post=1744"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tongwing.woon.sg\/blog\/wp-json\/wp\/v2\/tags?post=1744"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}