Topic: security blindspots

Sort by: Relevance | Date
  • Malicious NPM Packages Downloaded 86,000+ Times
    October 30, 2025
    80%

    Malicious NPM Packages Downloaded 86,000+ Times

    A security vulnerability in the NPM ecosystem allowed attackers to upload over 100 malicious packages, downloaded more than 86,000 times, exploiting Remote Dynamic Dependencies to fetch unverified code. The PhantomRaven campaign used these dependencies to bypass detection, as they remain invisibl...

    Read More »

Related Topics

credential theft (1) dependency management (1) malicious packages (1) attack sophistication (1) security infrastructure (1) static analysis (1) npm exploitation (1) remote dependencies (1)