More malicious npm packages found in wake of JumpCloud supply chain hack
Tags
country: North Korea Russia
attack-pattern: Data Direct Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001
Show in Graph
Common Information
Type Value
UUID dd357ab0-ac34-4195-a1f9-3f17f188f7a6
Fingerprint c12508990826bf0b
Analysis status DONE
Considered CTI value 0
Text language
Published July 27, 2023, 12:59 p.m.
Added to db July 28, 2023, 3:31 a.m.
Last updated Nov. 17, 2024, 12:59 p.m.
Headline More malicious npm packages found in wake of JumpCloud supply chain hack
Title More malicious npm packages found in wake of JumpCloud supply chain hack
Detected Hints/Tags/Attributes 47/2/6
Source URLs
Redirection Url
Details Source https://securityboulevard.com/2023/07/more-malicious-npm-packages-found-in-wake-of-jumpcloud-supply-chain-hack/
URL Provider
Details Provider Source level domain
Details securityboulevard.com securityboulevard.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 162 https://media.cert.europa.eu/rss?type=category&id=APTFilter&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 7 
npmaudit.com
Details Domain 246 
mail.ru
Details File 674 
node.js
Details File 174 
index.js
Details Url 4 
https://npmaudit.com/api/v4/init
Details Url 1 
https://www.reversinglabs.com/blog/more-malicious-npm-packages-found-in-wake-of-jumpcloud-supply-chain-hack