News

SecurityWeek1d

Highly Popular NPM Packages Poisoned in New Supply Chain Attack

Threat actors injected malicious code into multiple popular NPM packages after their maintainers fell for a well-crafted ...

Crypto stolen by hackers in largest NPM attack

Key takeawaysCybercriminals hacked 18 NPM packages of a well-known developer to conceal malware.The breach affected several ...

Hackers hijack npm packages with 2 billion weekly downloads in supply chain attack

In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after ...
The Register on MSN1d

More packages poisoned in npm attack, but would-be crypto thieves left pocket change

Miscreants cost victims time rather than money During the two-hour window on Monday in which hijacked npm versions were ...
CSO Online2d

Massive npm supply chain attack hits 18 popular packages with 2B weekly downloads

Malware hidden in widely used libraries like chalk and debug hijacked crypto transactions via browser APIs, exposing deep ...