Ghost Campaign Uses npm to Steal Crypto
Read More: buff.ly/N4NYXqk

#GhostCampaign #npmSecurity #SupplyChainAttack #CryptoTheft #MaliciousPackages #DeveloperSecurity #macOSMalware #LinuxSecurity

Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials installation process is in progress read more about Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials

Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials reconbee.com/ghost-campai...

#Ghostcampaign #npmpackages #cryptowallet #credentials #cybersecurity #cyberattack

Fake install logs in npm packages load RAT The Ghost campaign abused malicious npm packages that display realistic fake npm install logs to phish for sudo passwords and then download and execute a final-stage RAT that steals crypto wallets and sensitive data. ReversingLabs discovered multiple malicious packages (published by user "mikilanjillo") that retrieve decryption keys and payload URLs from a Telegram channel or a teletype.in web3 post and execute the RAT using the phished sudo credentials. #GhostCampaign #ReversingLabs

The Ghost campaign uses fake npm install logs to phish sudo passwords and deploy a RAT that steals crypto wallets and data. Malicious packages pull keys from Telegram and web3 posts. #GhostCampaign #npmSecurity #Indonesia