javascript package compromise

Cybersecurity

Massive Supply-Chain Attack Hits 2B+ Weekly Downloads

September 9, 2025
Cybersecurity warning: Multiple screens display red warning triangles with exclamation points against a binary code background.

A software supply-chain attack compromised nearly two dozen npm packages with two billion weekly downloads, making it one of the…

Read More »
Cybersecurity

Malware Discovered in Popular NPM Packages with 1M+ Weekly Downloads

June 9, 2025
npm logo overlaid on two metallic chains against a blue and purple tech background, symbolizing security and reliability.

A widespread supply chain attack compromised 17 popular NPM packages, injecting malicious code that acts as a remote access trojan,…

Read More »