Hit enter to search

Amazon and Slack being targeted by malicious NPM packages

March 2, 2021

Attackers are targeting Amazon, Zillow, Lyft, and Slack NodeJS apps using a new 'Dependency Confusion' vulnerability to steal Linux/Unix password files and open reverse shells back to the attackers.

Read More...