Otkriven malver u UA-Parser-JS, biblioteci koja se preuzme nekoliko miliona puta nedeljno

https://www.bleepingcomputer.com/news/security/pop... link-img
avatar

Iz članka:

Hackers hijacked the popular UA-Parser-JS NPM library, with millions of downloads a week, to infect Linux and Windows devices with cryptominers and password-stealing trojans in a supply-chain attack.

The UA-Parser-JS library is used to parse a browser’s user agent to identify a visitor’s browser, engine, OS, CPU, and Device type/model.

The library is immensely popular, with millions of downloads a week and over 24 million downloads this month so far. In addition, the library is used in over a thousand other projects, including those by Facebook, Microsoft, Amazon, Instagram, Google, Slack, Mozilla, Discord, Elastic, Intuit, Reddit, and many more well-known companies.

Due to the widespread impact of this supply-chain attack, it is strongly advised that all users of the UA-Parser-JS library check their projects for malicious software.

1

ULOGUJ SE I DODAJ KOMENTAR


Registruj ili prijavi.

VIDI POPULARNE POSTOVE


3
avatar Ivan pre 20 sati
4
avatar Nevenka pre 23 sata
1
avatar Vukašin pre 23 sata
1
avatar Ivana pre 4 dana
8
avatar Strahinja pre 8 dana
5
5
avatar Nevenka pre 14 dana
3
avatar Vukašin pre 15 dana
5
2
avatar Strahinja pre 15 dana
4
4
avatar Stefan pre 16 dana
5
avatar Vukašin pre 18 dana