buffer-utilities: Lazarus Group npm Brandjacking Dropper
Sonatype and JFrog describe buffer-utilities as a malicious npm brandjacking package in a Lazarus Group campaign; the package acts as a dropper that fetches and launches remote payloads.
#node
1 analyses tagged node, sorted newest first.