OphimCMS Supply Chain Attack Delivers Trojanized jQuery via Malicious Packagist Themes
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
A supply chain attack has compromised OphimCMS, a Vietnamese-language Laravel CMS, through six malicious Composer packages published on Packagist. These packages, disguised as legitimate themes, contain trojanized JavaScript assets, primarily fake jQuery libraries, aimed at redirecting site visitors to malicious sites. The attack specifically targets users of OphimCMS, which is commonly used for movie streaming websites. Researchers discovered the malicious packages under the 'ophimcms' namespace, indicating a targeted approach to exploit this particular CMS. The scope of the attack is significant as it affects any website utilizing these themes, potentially impacting a large number of users. Currently, there is no mention of a patch or remediation available for affected users. Security professionals are advised to monitor for any signs of compromise related to these packages.
Key Points: • Six malicious Composer packages targeting OphimCMS were found on Packagist. • Trojanized JavaScript assets in these packages aim to redirect site visitors. • No current patch or remediation is available for affected users.