Researchers Uncover RAT-Dropping npm Package Targeting Gulp Users
Cybersecurity researchers have uncovered a new suspicious package uploaded to the npm package registry that's designed to drop a remote access trojan (RAT) on compromised systems. The package in question is glup-debugger-log, which targets users of the gulp toolkit by masquerading as a "logger for gulp and gulp plugins." It has been downloaded 175 times to date. Software supply chain security
![Researchers Uncover RAT-Dropping npm Package Targeting Gulp Users](https://technetspot.com/uploads/images/202406/image_750x_666476c3605db.jpg)
What's Your Reaction?
![like](https://technetspot.com/assets/img/reactions/like.png)
![dislike](https://technetspot.com/assets/img/reactions/dislike.png)
![love](https://technetspot.com/assets/img/reactions/love.png)
![funny](https://technetspot.com/assets/img/reactions/funny.png)
![angry](https://technetspot.com/assets/img/reactions/angry.png)
![sad](https://technetspot.com/assets/img/reactions/sad.png)
![wow](https://technetspot.com/assets/img/reactions/wow.png)