Typosquat Campaign Targeting Puppeteer Users
08-Nov-2024 101
Ghosts and goblins abound on Halloween. Nowhere is this more true than throughout open source package registries, where specters lurk around every package install. On the eve of October 31, 2024, our automated detection platform surfaced several packages of interest. As this campaign began to unfold in earnest, it became clear that this attacker was in the early stages of a typosquat campaign targeting developers intending to use the popular Puppeteer, Bignum.js, and various cryptocurrency libraries (287 malware packages so far!). This comes on the heels of another attack targeting Ethers.js forks just a few weeks ago.
.
Typosquat Campaign Targeting Puppeteer Users #js #javascript #Typosquat #Campaign #Targeting #Puppeteer #Users https://www.javascript.ba/link/typosquat-campaign-targeting-puppeteer-users