Explore >> Select a destination

You are here

 www.nodejs-security.com
The XZ backdoor CVE-2024-3094: a JavaScript perspective
| | www.sonatype.com
Fake IP checker utilities on npm are crypto stealers
1.9 parsecs away

Travel
| | Crypto stealers are posing as IP checker utilities on npm, targeting Windows, Linux and macOS users with new open source malware campaigns.
| | thehackernews.com
First Malicious MCP Server Found Stealing Emails in Rogue Postmark-MCP Package
2.1 parsecs away

Travel
| | Malicious npm postmark-mcp v1.0.16 backdoored MCP server stole emails from 1,643 downloads.
| | snyk.io
The XZ backdoor CVE-2024-3094 | Snyk
0.5 parsecs away

Travel
| | On the 29th of March 2024, the high-stakes investment and prolonged campaign to plant a backdoor in the Linux software library liblzma to gain access to multiple operating systems via Linux distributions was carried out by a malicious actor.
| | github.com
GitHub - AIM-Intelligence/awesome-mcp-security: Security Threats related with MCP (Model Context Protocol), MCP Servers and more
25.5 parsecs away

Travel
| Security Threats related with MCP (Model Context Protocol), MCP Servers and more - AIM-Intelligence/awesome-mcp-security