BackBox.org News
  • BackBox.org
  • Linux
  • Community
  • News
  • Services
  • Sitemap
  • Contact
  • Click to open the search input field Click to open the search input field Search
  • Menu Menu
36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

April 5, 2026/in General News

Cybersecurity researchers have discovered 36 malicious packages in the npm registry that are disguised as Strapi CMS plugins but come with different payloads to facilitate Redis and PostgreSQL exploitation, deploy reverse shells, harvest credentials, and drop a persistent implant.
“Every package contains three files (package.json, index.js, postinstall.js), has no description, repository,

The Hacker News – ​Read More

Share this entry
  • Share on Facebook
  • Share on X
  • Share on WhatsApp
  • Share on LinkedIn
  • Share on Vk
  • Share on Reddit
  • Share by Mail
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png 0 0 admin https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png admin2026-04-05 07:06:422026-04-05 07:06:4236 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants
Search Search
Copyright © BackBox.org
  • Link to X
  • Link to Facebook
  • Link to LinkedIn
  • Link to Youtube
  • Link to Telegram
Link to: I let a smart planter maintain itself while I was away for 2 months – here’s the result Link to: I let a smart planter maintain itself while I was away for 2 months – here’s the result I let a smart planter maintain itself while I was away for 2 months –... Link to: Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS Link to: Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMSFortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS
Scroll to top Scroll to top Scroll to top