Are you installing packages from NPM? These three packages installed a backdoor on your server.

Recently, three NPM packages were found to have serious security vulnerabilities. These packages, known as 'node-tar', 'node-serialize', and 'node-fetch', have been identified as ones that can open shells on both Linux and Windows systems. For users of these operating systems, this poses a significant risk, as an attacker may gain access to the system and introduce malicious software. The package maintainers quickly responded by addressing the vulnerabilities, but the issue isn't entirely resolved. Users need to remain cautious and regularly update their packages to avoid potential threats in the future. This serves as a reminder to always be mindful of the software we install and the sources from which our packages originate.