​ ​AsyncAPI npm packages infected with credential-stealing malware

Read full story on BleepingComputer
Share
​ ​AsyncAPI npm packages infected with credential-stealing malware
AI disclosure

Summary

Five malicious versions of AsyncAPI packages were published to the Node Package Manager (npm) in a supply-chain attack that delivered a remote access trojan with info-stealing capabilities. [...]

Original reporting

Open original source
Read full article on BleepingComputer

Get the AFBytes Brief

Major stories, AI-assisted analysis, and what to watch next. Free, monthly, unsubscribe anytime.