HomeNewsSecurityPopular NPM library hijacked to install password-stealers, miners Hackers hijacked the popular UA-Parser-JS NPM library, with millions of downloads a week, to infect Linux and Windows devices with cryptominers and password-stealing trojans in a supply-chain attack. The UA-Parser-JS library is used to parse a browser's user agent to identify a visitor's browser, engine, OS, CPU, and
![Popular NPM library hijacked to install password-stealers, miners](https://cdn-ak-scissors.b.st-hatena.com/image/square/5a5f1b05c516cfc783bcbe4f7af44835aa631970/height=288;version=1;width=512/https%3A%2F%2Fwww.bleepstatic.com%2Fcontent%2Fhl-images%2F2021%2F10%2F23%2Fnpm-supply-chain-attack.jpg)