#npm-registry

[ follow ]
fromThe Hacker News
3 weeks ago

North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign

North Korean threat actors are deploying malicious npm packages as part of ongoing software supply chain attacks against the open-source ecosystem.
Information security
fromThe Hacker News
4 months ago

Nine-Year-Old npm Packages Hijacked to Exfiltrate API Keys via Obfuscated Scripts

Several legitimate cryptocurrency packages on npm have been hijacked to steal sensitive information from compromised systems.
[ Load more ]