Threat Alert: Private npm Packages Disclosed via Timing Attacks
Tags
cmtmf-attack-pattern: Masquerading
attack-pattern: Datasets Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Python - T1059.006 Server - T1583.004 Server - T1584.004 Masquerading - T1036 Masquerading
Show in Graph
Common Information
Type Value
UUID f7905c54-7708-4d00-883a-7efe9d917879
Fingerprint 85290b4c88523603
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 12, 2022, 11:30 a.m.
Added to db Feb. 17, 2023, 9:39 p.m.
Last updated Sept. 25, 2024, 5:48 p.m.
Headline Threat Alert: Private npm Packages Disclosed via Timing Attacks
Title Threat Alert: Private npm Packages Disclosed via Timing Attacks
Detected Hints/Tags/Attributes 25/2/3
Source URLs
Redirection Url
Details Source https://blog.aquasec.com/private-packages-disclosed-via-timing-attack-on-npm
URL Provider
Details Provider Source level domain
Details aquasec.com blog.aquasec.com
Attributes
Details Type #Events CTI Value
Details Domain 5 
registry.npmjs.org
Details Domain 2 
libreries.io
Details Url 3 
https://registry.npmjs.org