News
An attack targeting the Node.js ecosystem was just identified — but not before it compromised 18 npm packages that account ...
Security experts have warned that a newly discovered supply chain attack targeting npm packages is still active and may ...
The credential stealer harvested username, password, and 2FA codes before sending them to a remote host. With full access, ...
Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...
The largest supply-chain compromise in the history of the NPM ecosystem has impacted roughly 10% of all cloud environments, ...
Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after ...
Simple-looking code tapped Ethereum’s blockchain to fetch hidden URLs that directed compromised systems to download ...
Ethereum smart contracts are being used to download malware via poisoned NPM packages, something Binance has linked to DPRK ...
Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to steal funds.
Traditional methods often involved using trusted services like GitHub or Google Drive to host harmful links, but now, by embedding commands within Ethereum smart contracts, attackers are able to ...
At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...
Hackers are now exploiting vulnerabilities in widely-used NPM coding libraries to inject malware into Ethereum smart ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback