:
[SECURITY]■ STORY TIMELINE

ASYNCAPI NPM PACKAGES HIT BY MALWARE SUPPLY-CHAIN ATTACK

Five malicious versions of AsyncAPI packages were published to npm, delivering a remote access trojan capable of stealing credentials and sensitive data from developer systems.

1 SOURCEFIRST SEEN JUL 15, 03:37 PM► READ THE ARTICLE
Bleeping Computer+0m

Five malicious versions of AsyncAPI packages were published to the Node Package Manager (npm) in a supply-chain attack t…