packages

Payload for IP fingerprinting and credential theft Once the fake CAPTCHA interaction occurs, the…

Oct 30, 2025Ravie LakshmananDevSecOps / Software Security Cybersecurity researchers have uncovered yet another active…

Security researchers have disclosed a campaign of typosquatted npm packages that automatically execute on install and ultimately deliver a cross-platform credential…

Oct 29, 2025Ravie LakshmananMalware / Threat Intelligence Cybersecurity researchers have discovered a set of…

At least 18 popular JavaScript code packages that are collectively downloaded more than two…

At least 187 code packages made available through the JavaScript repository NPM have been…

Oct 14, 2025Ravie LakshmananMalware / Typosquatting Cybersecurity researchers have identified several malicious packages across…

Oct 10, 2025Ravie LakshmananCybercrime / Malware Cybersecurity researchers have flagged a new set of…

Introduction The modern development world is almost entirely dependent on third-party modules. While this…