tag

npm

33 posts

Active Supply Chain Attack Compromises @antv Packages on npm2026-05-19
Popular node-ipc npm Package Infected with Credential Stealer2026-05-19
Weekly Recap — 2026-05-11 -> 2026-05-182026-05-18
Mini Shai-Hulud: The Worm Returns and Goes Public2026-05-15
TanStack npm Packages Compromised in Ongoing Mini Shai-Hulud Supply-Chain Attack2026-05-13
5 Malicious NuGet Packages Impersonate Chinese UI Libraries to Distribute Crypto Wallet and Credential Stealer2026-05-13
Mini Shai-Hulud Spreads to Packagist: Malicious Intercom PHP Package Follows npm Compromise2026-05-13
Intercom’s npm Package Compromised in Ongoing Mini Shai-Hulud Worm Attack2026-05-13
lightning PyPI Package Compromised in Supply Chain Attack2026-05-13
TeamPCP-Linked Supply Chain Attack Hits SAP CAP and Cloud MTA npm Packages2026-05-13
Malicious npm Package Brand-Squats TanStack to Exfiltrate Environment Variables2026-05-13
'Mini Shai-Hulud' supply chain attack targets SAP npm packages2026-05-13
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign2026-05-13
Supply Chain Compromise Impacts Axios Node Package Manager2026-05-13
Don't Kill the Goose That Lays the Golden Eggs2026-05-13
Feross on TBPN: How North Korea Hijacked Axios2026-05-13
Attackers Are Hunting High-Impact Node.js Maintainers in a Coordinated Social Engineering Campaign2026-05-13
Supply Chain Attacks Surge in March 2026 | ThreatLabz2026-05-13
Intelligence Center2026-05-13
Axios Maintainer Confirms Social Engineering Attack Behind npm Compromise2026-05-13
The Hidden Blast Radius of the Axios Compromise2026-05-13
Supply Chain Attack on Axios Pulls Malicious Dependency from npm2026-05-13
STARDUST CHOLLIMA Likely Compromises Axios npm Package2026-05-13
How we caught the Axios supply chain attack2026-05-13
Mitigating the Axios npm supply chain compromise2026-05-13
Inside the Axios supply chain compromise - one RAT to rule them all2026-05-13
Elastic releases detections for the Axios supply chain compromise2026-05-13
North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack2026-05-13
Axios npm package compromised to deploy malware2026-05-13
Axios NPM Package Compromised: Supply Chain Attack Hits JavaScript HTTP Client with 100M+ Weekly Downloads2026-05-13
5 Malicious npm Packages Typosquat Solana and Ethereum Libraries to Steal Private Keys2026-05-13
CanisterWorm: npm Publisher Compromise Deploys Backdoor Across 29+ Packages2026-05-13
Weekly Recap — 2026-05-04 -> 2026-05-112026-05-11