SECURITYTHE HACKER NEWS
148 npm Packages Disguised as Student Proxies Turned Browsers Into a DDoS Botnet
148 npm packages disguised as student web proxies were used to turn browsers into a DDoS botnet for two weeks in May, according to JFrog's research. The packages served as a booby-trapped proxy site hosted via the npm registry, targeting students rather than developers.
Related Signal
Adjacent reporting
- Mini Shai-Hulud returns, compromising hundreds of npm packages
- Miasma campaign poisons 20-plus npm packages, hunts for developer secrets
- Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware
- Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT
- Shai-Hulud malware worms Red Hat npm package versions downloaded 80K times a week
- Cache-poisoning caper turns TanStack npm packages toxic