Sonatype’s deep dive research allowed to identify a new family of Discord malware-- "CursedGrabber"

0 Likes
9 months ago
COEST_0-1606736373128.png

 

CursedGrabber: Massive threat campaign strikes open-source repos--Security Affairs

Sonatype’s deep dive research allowed to identify a new family of Discord malware called CursedGrabber.

Sonatype has discovered more malware in the npm registry which, following our analysis and multiple cyber threat intelligence reports, has led to the discovery of a novel and large scale malware campaign leveraging the open-source ecosystem.

The malware called “xpc.js” was spotted on Friday by Nexus Intelligence research service which includes next generation machine learning algorithms that automatically detect potentially malicious activity associated with open source ecosystems.

 

Labels:

Other
Comment List
Anonymous
Related Discussions
Recommended