Diamond Member ThaHaka 0 Posted July 3 Diamond Member Share Posted July 3 This is the hidden content, please Sign In or Sign Up Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade as Rollup polyfill tooling to facilitate remote access and data theft. According to JFrog, the packages "rollup-packages-polyfill-core" and "rollup-runtime-polyfill-core" mimic the legitimate "rollup-plugin-polyfill-node" project, down to the description, repository metadata, and This is the hidden content, please Sign In or Sign Up 0 Quote Link to comment https://hopzone.eu/forums/topic/320323-h4ckn3wsnorth-korea-linked-npm-packages-mimic-rollup-polyfills-to-steal-developer-secrets/ Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.