148 npm Packages Disguised as Student Proxies Turned Browsers Into a DDoS Botnet

A campaign of 148 npm packages disguised as student web proxies turned visitors’ browsers into a distributed denial-of-service botnet for roughly two weeks in May, according to new research from JFrog.

The packages did not go after the developers who might install them. The operators used the registry as free hosting for a booby-trapped proxy site and let the students who came to dodge

Total
0
Shares
Leave a Reply

Your email address will not be published. Required fields are marked *

Previous Post

Microsoft Maps Three Salesforce Attack Paths Tied to a Year of ShinyHunters Activity

Next Post

U.S. Sanctions First VPN Service and Malware Cryptor Seller Over Ransomware Support

Related Posts
Total
0
Share