Type
Campaign
Actors
Pub. date
December 15, 2021
Initial access
Unknown
Impact
Resource hijackingSupply chain attack
Observed techniques
References
Status
Stub
Last edited
Oct 8, 2025 1:50 PM
Mandiant has attributed supply chain attacks which compromised ua-parser-js
, coa
, and rc
to UNC3379. The malicious packages would download and execute both a Monero cryptocurrency miner, and the DANABOT banking trojan, depending on the OS.