A threat actor called “RED-LILI” is connected to an ongoing, significant-scale supply chain attack campaign concentrating on the NPM package repository by publishing over 800 malicious modules. “Customarily, attackers use an anonymous, disposable NPM account from which they launch their attacks. As it seems this time, the attacker has fully-automated the process of NPM account creation and has opened dedicated accounts, one per package, making his new malicious packages batch harder to spot,” reads the report published by the Israeli software security company Checkmarx.
12 Essentials for a Successful SOC Partnership
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security