JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

A cryptocurrency thief got into the npm account of a hard-working developer via spearphishing. node.js packages with billions ...

Binance reassures customers after a massive NPM supply chain attack injects malicious code into 18 popular JavaScript ...

Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to ...

A major supply chain attack on the NPM repository briefly threatened crypto users worldwide. Malicious code was pushed into ...

Npm packages are reusable blocks of JavaScript code published to the Node Package Manager registry that developers can ...

Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...

According to Guillemet, the malicious code — already pushed into packages with over 1 billion downloads — is designed to silently swap crypto wallet addresses in transactions. That means unsuspecting ...

Hackers launched the largest NPM crypto attack in history and compromised 18 JavaScript packages with billions of downloads.

A new digital supply chain attack has targeted popular open-source npm packages with at least two billion downloads per week. On Sept. 8, Josh Junon, a package maintainer whose account was at the ...

Ledger CTO cautions users to halt crypto transactions due to a mass NPM attack that hijacks wallets and loots money.

An escalating npm supply chain attack has compromised dozens of foundational JavaScript packages to spread malware and drain ...