Tag: Node.js

Byakugan is a node.js-based malware packed into its executable by pkg. In addition to the main script, there are several libraries corresponding to features.

Node.js exposes a high-severity vulnerability, CVE-2024-27980, posing a significant threat to Windows platforms. This flaw allows attackers to execute...

Recent findings by cybersecurity firm Phylum reveal a concerning development in the software supply chain, as fake npm packages on the Node.js repository...

The VM2 library, used to securely run untrusted JavaScript code, has been found to have a critical vulnerability that allows remote code execution.