GitHub

HTTP request logger middleware for node.js

Named after Dexter, a show you should not watch until completion. Write log line on request instead of response. This means that a requests will be logged even if the server crashes, but data from the ...

Miasma campaign poisons 20-plus npm packages, hunts for developer secrets

Microsoft says latest attack targets Leo Platform and RStreams packages, harvesting creds and going after more maintainers ...
The Hacker News

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Microsoft says hotel phishing emails are using Calendly links and photo ZIP files to drop the TonRAT Node.js implant on front ...
Security Boulevard

Miasma Returns: Leo Platform Compromise in npm

TL;DR The Shai-Hulud Miasma campaign has a fresh series of malicious packages following the compromise of the czirker ...
The Caledonian-Record

Vivani Medical Receives Regulatory Approval for the Initiation of SLIM-1, a Phase 1 Clinical ...

Vivani Medical, Inc. (Nasdaq: VANI) (“Vivani” or the “Company”), a clinical-stage biopharmaceutical company developing ...
Infosecurity Magazine

Lookalike npm Package Hides a Multi-Stage Windows RAT

A malicious npm package has been caught impersonating one of the JavaScript ecosystem's most widely used build tools. The ...
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.