News
NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...
The credential stealer harvested username, password, and 2FA codes before sending them to a remote host. With full access, ...
The recent attack on the Node Package Manager (NPM) packages of a well-known developer, Josh Junon, known as "qix," has been ...
Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to ...
A new digital supply chain attack has targeted popular open-source npm packages with at least two billion downloads per week. On Sept. 8, Josh Junon, a package maintainer whose account was at the ...
What could have been a historic supply chain attack seems to have been averted due to the rapid response of the open source ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback