Vulnerability Exploits

Supply Chain Attack Hits Rspack, Vant npm Packages with Monero Miner

The latest news on the Rspack npm package attack and the Vant package Monero miner involves a sophisticated supply chain attack targeting the npm ecosystem. Here are the key highlights:

Rspack npm Package Attack:
- Compromised Packages: The developers of Rspack revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack3.
- Attack Details: The attack involved malicious code that was introduced into the packages, potentially allowing attackers to execute arbitrary code on systems that installed these packages3.
Vant Package Monero Miner:
- Monero Miner: The Vant package was compromised with a Monero miner, which is a type of cryptocurrency miner that uses computational resources to mine Monero (XMR) cryptocurrency1.
- Lazarus APT Involvement: The attack is attributed to the Lazarus APT group, which has been known for its sophisticated cyberattacks, including those targeting nuclear-related organizations1.
Supply Chain Vulnerability:
- npm Ecosystem: This attack highlights the vulnerability of the npm ecosystem, where trusted packages can be compromised to distribute malware or execute malicious activities3 5.
- Exploitation: Threat actors often exploit trusted supply chains to distribute malware, masquerading as productivity and development tools to gain the trust of developers5.

In summary, the Rspack and Vant package attacks demonstrate the ongoing threat of supply chain vulnerabilities in the npm ecosystem, where even trusted packages can be compromised to execute malicious activities.

Unpatched critical flaws impact Fancy Product Designer WordPress plugin

Latest News on Fancy Product Designer WordPress Vulnerabilities Critical Flaws in Fancy Product Designer Plugin: The Fancy Product Designer WordPress plugin, developed by Radykal, has been identified with two critical severity flaws that remain unfixed in the current latest version4. These vulnerabilities include: 1. SQL Injection: The plugin is vulnerable

Ivanti warns of new Connect Secure flaw used in zero-day attacks - BleepingComputer

Ivanti has recently issued a warning about a new zero-day vulnerability in its Connect Secure product, which has been exploited by hackers to install malware on appliances. Here are the key details: Key Highlights: 1. Vulnerability Details: * The vulnerability, tracked as CVE-2025-0282, is a critical (CVSS 9.0) stack-based buffer

Ivanti warns of new Connect Secure flaw used in zero-day attacks

The latest news on the Ivanti Connect Secure vulnerability involves a zero-day attack that was recently disclosed and addressed by Ivanti. Here are the key highlights: 1. Vulnerability Disclosure: * Ivanti has disclosed two vulnerabilities affecting its Connect Secure, Policy Secure, and Neurons for Zero Trust Access (ZTA) gateways14. * The vulnerabilities

Read next