National Cyber Warfare Foundation (NCWF)

Crypto enthusiasts flood npm with more than 281,000 bogus packages overnight


0 user ratings
2024-08-19 23:10:25
milo
Developers , Blue Team (CND) , Education , Crypto Currency

 - archive -- 

Crypto enthusiasts have lately been flooding software registries like npm and PyPI with thousands of bogus packages that add no functional value and instead put a strain on the entire open source ecosystem.


A single instance, recorded by Sonatype in July 2024, saw 281,512 distinct packages appearing on the npmjs.com registry overnight — each package named a gibberish Latin phrase akin to Lorem Ipsum. 


The post Crypto enthusiasts flood npm with more than 281,000 bogus packages overnight appeared first on Security Boulevard.



Ax Sharma

Source: Security Boulevard
Source Link: https://securityboulevard.com/2024/08/crypto-enthusiasts-flood-npm-with-more-than-281000-bogus-packages-overnight/


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Developers
Blue Team (CND)
Education
Crypto Currency



Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.