npm

Nov 11, 2025Ravie LakshmananSoftware Supply Chain / Malware Cybersecurity researchers have discovered a malicious…

Ironically, he said, one of the biggest reasons given for the world to use…

eSecurity Planet content and product recommendations are editorially independent. We may make money when…

At some point, npm leadership either discovered this campaign on its own or was…

Payload for IP fingerprinting and credential theft Once the fake CAPTCHA interaction occurs, the…

Oct 30, 2025Ravie LakshmananDevSecOps / Software Security Cybersecurity researchers have uncovered yet another active…

Security researchers have disclosed a campaign of typosquatted npm packages that automatically execute on install and ultimately deliver a cross-platform credential…

Oct 29, 2025Ravie LakshmananMalware / Threat Intelligence Cybersecurity researchers have discovered a set of…

Incident description The first version of the AdaptixC2 post-exploitation framework, which can be considered…

Oct 14, 2025Ravie LakshmananMalware / Typosquatting Cybersecurity researchers have identified several malicious packages across…