Shai-Hulud is the third major supply chain attack targeting the NPM ecosystem after the s1ngularity attack and the recent ...
On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...
Charles Guillemet, CTO at the crypto wallet platform Ledger, warned the crypto community to be cautious while executing ...
Crypto intelligence platform Security Alliance released a report on Sep. 8 to reveal that Ethereum and Solana wallets have ...
Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...
A new self-replicating worm dubbed Shai-Hulud has compromised over 180 npm packages, stealing credentials and spreading ...
Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel self-replicating credential-stealing code in yet another wave of a supply chain ...
Threat actors injected malicious code into multiple popular NPM packages after their maintainers fell for a well-crafted ...
Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after ...
A new digital supply chain attack has targeted popular open-source npm packages with at least two billion downloads per week. On Sept. 8, Josh Junon, a package maintainer whose account was at the ...
In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after ...
Crims have added backdoors to at least 18 npm packages after developer Josh Junon inadvertently authorized a reset of the two ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback