Npm Trojan Bypasses UAC, Installs AnyDesk with “Oscompatible” Package

Updated on January 19, 2024

A malicious package uploaded to the npm registry has been found deploying a sophisticated remote access trojan on compromised Windows machines.
The package, named “oscompatible,” was published on January 9, 2024, attracting a total of 380 downloads before it was taken down.
oscompatible included a “few strange binaries,” according to software supply chain security firm Phylum, including a single…

Read the rest of the story at Read More

Source: The Hacker News

January 16, 2024 Uncategorized

Alert: Over 178,000 SonicWall Firewalls ...

March 12, 2025 Uncategorized

Apple Releases Patch for WebKit Zero-Day...

February 11, 2025 Uncategorized

Npm Trojan Bypasses UAC, Installs AnyDesk with “Oscompatible” Package

Related posts

Alert: Over 178,000 SonicWall Firewalls ...

Apple Releases Patch for WebKit Zero-Day...

Google Confirms Android SafetyCore Enabl...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines