Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...
Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...
Halud, is compromising hundreds of NPM packages, spreading self-replicating malware, exfiltrating data, and turning private ...
The credential stealer harvested username, password, and 2FA codes before sending them to a remote host. With full access, ...
Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after ...
The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel series — because it publishes any stolen credentials in a new public GitHub ...
According to ReversingLabs' 2025 Software Supply Chain Security Report, 14 of the 23 crypto-related malicious campaigns in ...
Visual Studio Code is a code editor that is completely free and open-source. It has been developed by Microsoft and is highly regarded by developers due to its lightweight, fast, and extensible design ...
Threat actors injected malicious code into multiple popular NPM packages after their maintainers fell for a well-crafted ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback