All Related Articles for: Malware Discovered in Popular NPM Packages with 1M+ Weekly Downloads
-
Invisible Code Supply-Chain Attack Hits GitHub Repositories
A new wave of supply-chain attacks uses invisible Unicode…
Read More » -
New npm Malware Spreads Itself in Supply Chain Attack
A sophisticated malware campaign is targeting developers via 19…
Read More » -
Malicious dYdX Packages Drain User Wallets
Security researchers discovered a sophisticated supply chain attack targeting…
Read More » -
500 npm Packages Infected by Shai-Hulud Malware Leaking Secrets
Over 500 npm packages, including popular tools like Zapier…
Read More » -
Self-Propagating Attack Infects 187 npm Packages
A self-propagating worm named 'Shai-Hulud' has compromised at least…
Read More » -
Self-Replicating Worm Infects 180+ npm Packages in Automated Attack
A self-replicating worm named "Shai-hulud" is spreading through the…
Read More » -
Malicious npm Code Infiltrated 10% of Cloud Environments
A supply chain attack using malicious npm packages has…
Read More » -
Massive Supply-Chain Attack Hits 2B+ Weekly Downloads
A software supply-chain attack compromised nearly two dozen npm…
Read More » -
Popular NPM ‘is’ Package Infects 2.8M Weekly Users with Malware
A widely-used NPM package called 'is' was compromised in…
Read More » -
npm mistakenly deletes Stylus package, disrupting builds
The popular Stylus CSS preprocessor was accidentally removed from…
Read More » -
GitHub Abused in Malware-as-a-Service Attack Campaign
Security researchers found a malware campaign using GitHub repositories…
Read More »
