News
NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...
Crypto intelligence platform Security Alliance released a report on Sep. 8 to reveal that Ethereum and Solana wallets have ...
A cryptocurrency thief got into the npm account of a hard-working developer via spearphishing. node.js packages with billions ...
It is possible that the attackers behind this attack are the same ones as last time. Their malicious code bears the name of a prominent science fiction monster.
An attack targeting the Node.js ecosystem was just identified — but not before it compromised 18 npm packages that account ...
Threat actors injected malicious code into multiple popular NPM packages after their maintainers fell for a well-crafted ...
The credential stealer harvested username, password, and 2FA codes before sending them to a remote host. With full access, ...
JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.
Billions (No, that's not a typo, Billions with a capital B) of files were potentially compromised. If you thought Node Package Manager (npm), the Billions of downloads were potentially compromised ...
Researchers have discovered multiple npm packages named after NodeJS libraries that even pack a Windows executable that resembles NodeJS but instead drops a sinister trojan. These packages, given ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback