On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...

Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to ...

A JavaScript supply chain attack has delivered a crypto-clipper via 18 npm packages; Ledger’s CTO has warned ...

According to Guillemet, the malicious code — already pushed into packages with over 1 billion downloads — is designed to silently swap crypto wallet addresses in transactions. That means unsuspecting ...

A serious security scare has hit the open-source software world, and it’s got big implications for crypto. Ledger’s chief ...

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...

Sign up for the Slatest to get the most insightful analysis, criticism, and advice out there, delivered to your inbox daily.

Hackers launched the largest NPM crypto attack in history and compromised 18 JavaScript packages with billions of downloads.

Ledger's CTO Charles Guillemet warned of a large-scale supply chain attack, potentially stealing crypto from common software ...

The browser is now the frontline for cyberattacks. From phishing kits and ClickFix lures to malicious OAuth apps and ...

The national system for sending emergency alerts to mobile phones in the UK is being tested for the second time.

Vibe coding. It's a term that's bubbling around to describe a new wave of app creation. It means instead of writing code line ...