News
A new self-replicating worm dubbed Shai-Hulud has compromised over 180 npm packages, stealing credentials and spreading ...
Among the compromised npm packages are those from cybersecurity experts CrowdStrike, as well as others with millions of ...
Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...
A new piece of malware is spreading through the popular tinycolor NPM library and more than 300 other packages, some of which ...
"Each published package becomes a new distribution vector: as soon as someone installs it, the worm executes, replicates, and ...
Shai-Hulud is the third major supply chain attack targeting the NPM ecosystem after the s1ngularity attack and the recent ...
In a similar style to the Nx attack, the payload then publishes a new repo via the victim's GitHub account, dropping stolen ...
Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel ...
Reports surfaced that the widely used npm package @ctrl/tinycolor had been compromised by Wormable Malware as part of a ...
A new supply chain attack on npm, the node package manager, has injected the first malware with self-replicating worm ...
The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...
An apparent "Dune" aficionado is responsible for the first self-propagating attack on the npm JavaScript repository in what one security company has ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback