An NPM supply chain attack has prompted Ledger Chief Technology Officer Charles Guillemet to urge crypto users to pause on-chain transactions.
NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...
Earlier this week, the Npm package manager suffered what may be its worst security incident to date. Unknown cybercriminals ...
JavaScript’s low bar to entry has resulted in one of the richest programming language ecosystems in the world. This month’s ...
An apparent "Dune" aficionado is responsible for the first self-propagating attack on the npm JavaScript repository in what one security company has ...
The bundle.js script is designed to steal npm, GitHub, AWS and GCP tokens. But it also installs TruffleHog – an open source ...
Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results