JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

So far, according to recent court filings, the DOJ has already terminated monitorships for three firms that agreed to them under the Biden administration. Additionally, prosecutors stated they would ...

Ledger’s chief technology officer issued an urgent warning on Monday after discovering what he described as a large-scale ...

Judge allows Bell to amend its pleadings, setting precedent that could protect consumers who illegally downloaded content ...

NPM supply chain attack compromised 18 popular JavaScript packages, swapping crypto wallet addresses, but quick detection ...

Earlier this week, the Npm package manager suffered what may be its worst security incident to date. Unknown cybercriminals ...

A new piece of malware is spreading through the popular tinycolor NPM library and more than 300 other packages, some of which ...

An attack targeting the Node.js ecosystem was just identified — but not before it compromised 18 npm packages that account ...

Other well-known holidays fill the upper echelons of unofficial holidays: 420 (April 20), April Fools’ Day (April 1), Pi Day ...

Your weekly strategic brief on the cyber threat landscape. Uncover the deeper patterns behind attacks, from bootkit malware ...

BRIAN DEESE is Institute Innovation Fellow at the Massachusetts Institute of Technology. He served as Director of the ...

In the past five years, Salvadoran President Nayib Bukele has become Latin America’s most celebrated authoritarian. He has ...