Expired domain leads to supply chain attack on node
Source: Csoonline
Published:
<p>A popular npm package called node-ipc has been compromised, with hackers publishing malicious versions that bundle credential stealing malware. The root cause of the compromise was an expired domain name that attackers managed to register in order to hijack a maintainer’s account.</p> <p>The node