A JavaScript supply chain attack has delivered a crypto-clipper via 18 npm packages; Ledger’s CTO has warned ...

NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...

Key takeawaysCybercriminals hacked 18 NPM packages of a well-known developer to conceal malware.The breach affected several ...

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

The supply chain npm attack did not steal millions in crypto, despite initial fears. The wallets used in the attack only ...

Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to ...

Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...

Npm packages are reusable blocks of JavaScript code published to the Node Package Manager registry that developers can ...

NPM supply chain attack compromised 18 popular JavaScript packages, swapping crypto wallet addresses, but quick detection ...

Hackers launched the largest NPM crypto attack in history and compromised 18 JavaScript packages with billions of downloads.

Multiple npm packages have been compromised by a phishing attack in an attempt to spread crypto malware to billions of ...

On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...