Looks like Cryptocurrency theft malware has found its way into a node.js library:
Event-Stream malware
Do node-red users have any exposure?
The only library we know of in Node-RED that could possibly be exposed is the grunt-cli library used as part of the build process - so normal installs should be clear. Anyone who installed the dev version from github during the affected period should check their version of grunt-cli for the affected library, and update if necessary. My understanding of it (so far) is that it only becomes active if it find another ...coin library installed that it then tries to compromise.
1 Like
