News
Stylus library and replaced them with a "security holding" page, breaking pipelines and builds worldwide that rely on the ...
The popular NPM package 'is' has been compromised in a supply chain attack that injected backdoor malware, giving attackers ...
DLL-based malware targets Windows users after a phishing campaign tricked the maintainer into leaking a token.
npm packages hit by phishing-based supply chain attack, exposing developers to malware and remote access threats.
North Korean threat actors escalated their software supply chain attacks by uploading 67 new malicious packages to the npm ...
Uploading malicious code to npm is just a setup. The real attack most likely happens elsewhere - on LinkedIn, Telegram, or ...
North Korean hackers continue attacking open-source software via npm packages. 67 new malicious packages with XORIndex Loader ...
NPM co-founder Isaac Schlueter, who was the CEO until he was replaced by Bryan Bogensberger, remains as the company's chief product officer. Visit Business Insider's homepage for more stories.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results