Uncategorized

Another JavaScript library cyber-attack discovered by security team of the user company, the latest in a string of attacks.

Another JavaScript library cyber-attack discovered by security team of the user company, the latest in a string of attacks.

Another JavaScript library cyber-attack discovered by security team of the user company, the latest in a string of attacks. Though the library was only a short time before the virus was discovered the damage was done. at least 300 computers have been infected with this cyber-attack virus. What is even more frustrating is that it wasn’t even JavaScript’s own security that found it. Additionally, it’s even more frustrating and telling that these attacks keep repeating themselves. Since late August no less than four similar attacks using JavaScript libraries have occurred. One thing is clear, the hacker or hackers that found a way to upload their attack know it succeeds. Which means as long as it continues to work, they will continue to attack.

 

The nature of the current attack is to hide a Trojan virus in the JavaScript library. The virus was hidden inside the JavaScript library on a fake subject. The virus was hidden behind a data shell that prevents it from being detected. after it’s downloaded and pass any security it opens up and creates a backdoor into the computer. when that is achieved it waits for confirmation signal from the hacker. As a result, the hacker has access to the computer and all the data stored on it.

Cyber security experts have stated that any computer that is downloaded the library should be considered compromised. All sensitive information stored on the computer should be considered lost to the hacker. Furthermore, the experts state that any passwords or user IDs need to be reset as quickly as possible. Specifically, they need to be reset from a different computer or device that is fully secure. Fortunately, virus hidden inside the JavaScript library was detected the same day and blocked from downloading. Unfortunately, it was already downloaded at least 300 times. It is regrettably very clear that JavaScript’s security needs to improve its procedures. Especially if these attacks continue to occur with this frequency.