Tag:

npm

Mobile Security Security
Unplugged holes in the npm and yarn package managers could let attackers bypass defenses against Shai-Hulud

by admin January 27, 2026

by admin January 27, 2026

Not the complete picture He says the scripts bypass vulnerability was reported through the…

0 Facebook Twitter Pinterest Email
Data Breach Security
From typos to takeovers: Inside the industrialization of npm supply chain attacks

by admin January 15, 2026

by admin January 15, 2026

That scale, however, is only part of the risk. The exposure is amplified by…

0 Facebook Twitter Pinterest Email
Physical Security Security
Malicious npm packages target the n8n automation platform in a supply chain attack

by admin January 12, 2026

by admin January 12, 2026

“According to security researchers at data security company Cyera, there were more than 100,000…

0 Facebook Twitter Pinterest Email
Malware
Researchers Uncover NodeCordRAT Hidden in npm Bitcoin-Themed Packages

by admin January 8, 2026

by admin January 8, 2026

Jan 08, 2026Ravie LakshmananMalware / Cloud Security Cybersecurity researchers have discovered three malicious npm…

0 Facebook Twitter Pinterest Email
Malware
Researchers Spot Modified Shai-Hulud Worm Testing Payload on npm Registry

by admin December 31, 2025

by admin December 31, 2025

Dec 31, 2026Ravie LakshmananCybersecurity / Malware Cybersecurity researchers have disclosed details of what appears…

0 Facebook Twitter Pinterest Email
Hacking
Shai-Hulud Returns With ‘Golden Path’ Malware In Latest NPM Attacks

by admin December 30, 2025

by admin December 30, 2025

Just weeks after the devastating “Second Coming” campaign crippled thousands of development environments, the…

0 Facebook Twitter Pinterest Email
Malware
27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

by admin December 29, 2025

by admin December 29, 2025

Cybersecurity researchers have disclosed details of what has been described as a “sustained and…

0 Facebook Twitter Pinterest Email
Hacking
NPM registry abused in targeted Microsoft phishing campaign

by admin December 24, 2025

by admin December 24, 2025

A targeted spearphishing campaign has abused the npm package registry as a long-term hosting…

0 Facebook Twitter Pinterest Email
Hacking
Malicious WhatsApp API library NPM package caught stealing messages

by admin December 23, 2025

by admin December 23, 2025

A malicious NPM package masquerading as a WhatsApp API library has been discovered exfiltrating…

0 Facebook Twitter Pinterest Email
Malware
Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens

by admin December 22, 2025

by admin December 22, 2025

Cybersecurity researchers have disclosed details of a new malicious package on the npm repository…

0 Facebook Twitter Pinterest Email

Newer Posts

Older Posts