npm supply-chain attack

BigTech Companies

500 npm Packages Infected by Shai-Hulud Malware Leaking Secrets

November 26, 2025
NPM logo in red and white on a dark gradient background.

Over 500 npm packages, including popular tools like Zapier and Postman, have been compromised by the Shai-Hulud malware, which steals…

Read More »
Cybersecurity

NPM Supply-Chain Attack Thwarted: Hackers Foiled

September 12, 2025
Hooded figure in red, wearing a mask, sits before glowing screens displaying Bitcoin and data streams.

A massive supply-chain attack on the NPM ecosystem was quickly neutralized, preventing a catastrophic security incident despite malicious updates reaching…

Read More »
Cybersecurity

Massive Supply-Chain Attack Hits 2B+ Weekly Downloads

September 9, 2025
Cybersecurity warning: Multiple screens display red warning triangles with exclamation points against a binary code background.

A software supply-chain attack compromised nearly two dozen npm packages with two billion weekly downloads, making it one of the…

Read More »