A highly sophisticated Remote Access Trojan (RAT) has resurfaced on the npm registry, demonstrating a relentless effort to compromise developer environments. After npm security took down the original malicious forge-jsx package on May 4, 2026, the threat actor immediately launched its successor: forge-jsxy. Operating under a new account, the attacker picked up exactly where they […]
The post Malicious npm RAT Campaign Delivers Persistent Backdoor Access appeared first on Cyber Security News.