Follow

> On March 26, 2019, a malicious version of the popular package, that has been downloaded a total of 28 million times to date, was published to the official repository. Version 3.2.0.3 includes a stealthy backdoor that gives attackers remote command execution on server-side applications.

Comments: talkgroup.xyz/t/malicious-remo

Sign in to participate in the conversation
Mastodon @ SDF

"I appreciate SDF but it's a general-purpose server and the name doesn't make it obvious that it's about art." - Eugen Rochko