pull down to refresh

PhantomRaven: NPM Malware Hidden in Invisible Dependencieswww.koi.ai/blog/phantomraven-npm-malware-hidden-in-invisible-dependencies
289 sats \ 1 comment \ @kepford 11h security
related
Malicious npm Packages Found Using Image Files to Hide Backdoor Codethehackernews.com/2024/07/malicious-npm-packages-found-using.html?m=1
23 sats \ 0 comments \ @ch0k1 19 Jul 2024 news
10 npm Packages Caught Stealing Developer Credentials on Windows, macOS & Linuxthehackernews.com/2025/10/10-npm-packages-caught-stealing.html
10 sats \ 0 comments \ @ch0k1 29 Oct security
Bogus npm Packages Used to Trick Software Developers into Installing Malwarethehackernews.com/2024/04/bogus-npm-packages-used-to-trick.html?m=1
42 sats \ 1 comment \ @ch0k1 28 Apr 2024 security
North Korean Hackers Targeting Developers with Malicious npm Packagesthehackernews.com/2024/02/north-korean-hackers-targeting.html
23 sats \ 0 comments \ @doofus 28 Feb 2024 security
Malicious npm Packages Infect 3,200+ Cursor Users With Backdoorthehackernews.com/2025/05/malicious-npm-packages-infect-3200.html
24 sats \ 0 comments \ @ch0k1 11 May news
Self-Replicating Worm Hits 180+ Software Packageskrebsonsecurity.com/2025/09/self-replicating-worm-hits-180-software-packages/
50 sats \ 0 comments \ @ch0k1 16 Sep news
NPM hack was mentioned multiple times on SN before yesterday
130 sats \ 4 comments \ @nelom 9 Sep bitdevs
Nearly 20% of Docker Hub Repositories Spread Malware & Phishing Scamsjfrog.com/blog/attacks-on-docker-with-millions-of-malicious-repositories-spread-malware-and-phishing-scams/
154 sats \ 1 comment \ @nym 30 Apr 2024 security
New RustDoor macOS malware impersonates Visual Studio updatewww.bleepingcomputer.com/news/security/new-rustdoor-macos-malware-impersonates-visual-studio-update/
177 sats \ 0 comments \ @ch0k1 10 Feb 2024 security
Hackers target Docker, Hadoop, Redis, Confluence with new Golang malwarewww.bleepingcomputer.com/news/security/hackers-target-docker-hadoop-redis-confluence-with-new-golang-malware/
120 sats \ 0 comments \ @ch0k1 6 Mar 2024 security
Winnti's new UNAPIMON tool hides malware from security softwarewww.bleepingcomputer.com/news/security/winntis-new-unapimon-tool-hides-malware-from-security-software/amp/
10 sats \ 0 comments \ @ch0k1 4 Apr 2024 security
Over 100,000 Infected Repos Found on GitHub
1687 sats \ 6 comments \ @0xbitcoiner 29 Feb 2024 security
Wallet-stealer malware on macOS: here’s what I built to solve itwww.getshieldkey.com
4340 sats \ 12 comments \ @panicsell 21 May privacy
firefox-patch-bin, librewolf-fix-bin and other AUR packages contain malwarelists.archlinux.org/archives/list/aur-general@lists.archlinux.org/thread/7EZTJXLIAQLARQNTMEW2HBWZYE626IFJ/
308 sats \ 2 comments \ @k00b 24 Jul security
Backdoor Slipped Into Popular Code Library, Drains ~$155k From SOL Walletsarstechnica.com/information-technology/2024/12/backdoor-slips-into-popular-code-library-drains-155k-from-digital-wallets/
81 sats \ 0 comments \ @0xbitcoiner 5 Dec 2024 security
SVG Security Analysis Toolkit to Detect Malicious Scripts Hidden in SVG Filescybersecuritynews.com/svg-security-analysis-toolkit/
110 sats \ 3 comments \ @ch0k1 2 Oct news
Self Propagating NPM Malware Compromises over 40 Packageswww.stepsecurity.io/blog/ctrl-tinycolor-and-40-npm-packages-compromised
100 sats \ 0 comments \ @hn 16 Sep tech
We Just Found Malicious Code in the Popular NPM Packagejdstaerk.substack.com/p/we-just-found-malicious-code-in-the
1397 sats \ 18 comments \ @kristapsk 8 Sep security
Npm Run Hack:Me - A Supply Chain Attack Journeyrxj.dev/posts/npm-run-hack-supply-chain-attack-journey/
161 sats \ 1 comment \ @k00b 12 Mar devs
Malicious VSCode extensions with millions of installs discoveredwww.bleepingcomputer.com/news/security/malicious-visual-studio-code-extensions-with-millions-of-installs-discovered/
370 sats \ 0 comments \ @Rsync25 9 Jun 2024 security
Snyk security researcher deploys malicious NPM packages targeting Cursor.comsourcecodered.com/snyk-malicious-npm-package/
34 sats \ 0 comments \ @hn 14 Jan tech