Stories
Slash Boxes
Comments

SoylentNews is people

Submission Preview

Link to Story

Somebody Tried to Hide a Backdoor in a Popular JavaScript npm Package

Accepted submission by MrPlow at 2018-05-03 13:58:07
/dev/random

Submitted via IRC for SoyCow8317

The Node Package Manager (npm) team avoided a disaster today when it discovered and blocked the distribution of a cleverly hidden backdoor mechanism inside a popular —albeit deprecated— JavaScript package.

Source: https://www.bleepingcomputer.com/news/security/somebody-tried-to-hide-a-backdoor-in-a-popular-javascript-npm-package/ [bleepingcomputer.com]


Original Submission