"Trojanized jQuery Packages Found on npm, GitHub, and jsDelivr Code Repositories" ( Jul 09, 2024 ) ( The Hacker News )
Japan, 最新の編集: Fri, 12 Jul 2024 00:12:02 +0900 Mesh2Net | Topics: Science, Art, and Politics | By RainbowLink Inc. (株式会社レインボーリンク)より
"
Trojanized jQuery Packages Found on npm, GitHub, and jsDelivr Code Repositories"
Jul 09, 2024, The Hacker News
"This attack stands out due to the high variability across packages," Phylum said in an analysis published last week.
"The attacker has cleverly hidden the malware in the seldom-used 'end' function of jQuery, which is internally called by the more popular 'fadeTo' function from its animation utilities."
