Malware Detected: Reverse Shell Without JavaScript Files in npm
OX Research found paperclip2, an npm package with no JavaScript files, hiding a reverse shell in its config file — and two related packages carrying the same payload Overview The OX Research team…
Read the full articleYou might also wanna read
AI Pentesting vs Traditional Pentesting: Where Each Wins
OX Security·7h ago
Continuous Pentesting: From Annual Audit to Always-On
OX Security·7h ago

Injectivelabs npm Package Hijacked, Impacting 87 Dependent Packages
OX Security·1d ago

Beyond CVSS Scores: The Enterprise Guide to Vulnerability Prioritization Tools That Actually Reduce Risk
OX Security·9d ago

npm Is Fighting the Right War With the Wrong Weapons
OX Security·10d ago
“Be Violent With Your Agents”: The Hard Truths of Governing Agentic AI
OX Security·10d ago

Comments
Sign in to join the conversation.
No comments yet. Be the first.