Tag: PhantomRaven

  • PhantomRaven NPM Attack Uses 88 Malicious Packages to Steal Developer Data

    PhantomRaven NPM Attack Uses 88 Malicious Packages to Steal Developer Data

    Security researchers have uncovered a new wave of the PhantomRaven NPM attack, a campaign that distributes malicious packages through the npm registry to steal developer data. The operation targets programmers who unknowingly install infected dependencies during normal development work. Investigators discovered 88 malicious packages published through dozens of fake npm accounts. The packages appear legitimate…