The OpenJS Foundation, which oversees multiple JavaScript projects, thwarted a takeover attempt of at least one project that has echoes of the dangerous backdoor found in versions of the XZ Utils data compression library that failed only because a Microsoft engineer incidentally discovered it. The malicious code targeting XZ Utils was put together over two..

The post XZ Utils-Like Takeover Attempt Targets the OpenJS Foundation appeared first on Security Boulevard.

Jeffrey Burt

Source: Security Boulevard
Source Link: https://securityboulevard.com/2024/04/xz-utils-like-takeover-attempt-targets-the-openjs-foundation/