Pillar Security has discovered a new and serious type of cyberattack called the “Rules File Backdoor.” This method allows hackers to secretly compromise AI-generated code by embedding harmful instructions into configuration files used by popular coding tools like Cursor and GitHub Copilot. By utilizing hidden characters, attackers can manipulate AI systems to produce malicious code ...
On December 20, 2024, the developers of Rspack disclosed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a supply chain attack. Malicious versions containing cryptocurrency mining malware were published to the npm registry after an attacker gained unauthorized publishing access. The affected versions, 1.1.7, have been removed, with 1.1.8 now considered ...
Cybersecurity researchers have revealed a year-long software supply chain attack on the npm package registry, initiated by the seemingly harmless library @0xengine/xmlrpc. This package, which originally functioned as a JavaScript XML-RPC server for Node.js, was compromised shortly after its launch to include malicious code capable of stealing sensitive information and mining cryptocurrency. The malicious features ...
