Malicious nx Packages, AI worker scam, Salt Typhoon attacks Netherlands

Chinese hacking group Salt Typhoon expansion prompts multinational advisory

Pervasive Chinese hacking group Salt Typhoon continues to strike, this time setting its sights on the Netherlands. Dutch intelligence authorities have confirmed that the cyber actors accessed routers belonging to smaller internet service and hosting providers. This follows a stark warning from intelligence agencies in more than a dozen countries about the dangers of Salt Typhoon, also known as GhostEmperor, Operator Panda, and RedMike, as well a…

Malicious Nx Packages Used in Two Waves of Supply Chain Attack

The attackers exploited a vulnerable workflow to create the malicious Nx packages and use them to steal credentials and other information.

Popular Nx Packages Compromised By Credential-Stealing Malware - Cybernoz - Cybersecurity News

A widespread supply chain attack on the popular Nx build system has compromised dozens of high-traffic packages, exposing sensitive credentials and demonstrating a frighteningly comprehensive approach to future threats. Security researchers have confirmed that malicious versions of Nx—numbered 20.9.0 through 21.8.0—systematically scanned infected machines for a broad range of secrets before exfiltrating them to public GitHub repositories in an e…

Malicious nx Packages, AI worker scam, Salt Typhoon attacks Netherlands

Malicious nx Packages leak GitHub, Cloud, and AI Credentials North Korean remote worker scheme boosted by generative AI The Netherlands announces Salt Typhoon penetration Huge thanks to our sponsor, Prophet Security Security teams are drowning in alerts – many companies… Read more → The post Malicious nx Packages, AI worker scam, Salt Typhoon attacks Netherlands appeared first on IT Security News.