Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack

Updated on December 20, 2024

The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish malicious versions to the official package registry with cryptocurrency mining malware.
Following the discovery, versions 1.1.7 of both libraries have been unpublished from the npm registry. The latest…

Read the rest of the story at Read More

Source: The Hacker News

October 10, 2024 Uncategorized

Experts Warn of Critical Unpatched Vulne...

February 15, 2025 Uncategorized

Android’s New Feature Blocks Fraud...

January 8, 2025 Uncategorized

Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack

Related posts

Experts Warn of Critical Unpatched Vulne...

Android’s New Feature Blocks Fraud...

FCC Launches ‘Cyber Trust MarkR...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines