New IronWorm malware hits 36 packages in npm supply-chain attack
Summary
A new infostealer malware named IronWorm has been discovered targeting 36 packages within the Node Package Manager (npm) registry. This incident represents a significant supply-chain attack, as malicious code was injected into legitimate software distribution channels.
IFF Assessment
The discovery of new malware actively infecting popular software repositories represents a direct threat to software integrity and deployment pipelines, posing a risk to organizations relying on these packages.
Defender Context
This attack highlights the ongoing threat of supply-chain compromises, where attackers inject malicious code into widely used software packages. Defenders should be vigilant about monitoring their dependencies, implementing robust software supply chain security practices, and having rapid incident response plans in place for potential compromises.