pull down to refresh

Bogus npm Packages Used to Trick Software Developers into Installing Malwarethehackernews.com/2024/04/bogus-npm-packages-used-to-trick.html?m=1
52 sats \ 1 comment \ @ch0k1 28 Apr 2024 security
related
Compromised npm package silently installs OpenClaw on developer machineswww.csoonline.com/article/4135449/compromised-npm-package-silently-installs-openclaw-on-developer-machines.html
422 sats \ 4 comments \ @winteryeti 24 Feb AI
Self-Replicating Worm Hits 180+ Software Packageskrebsonsecurity.com/2025/09/self-replicating-worm-hits-180-software-packages/
75 sats \ 0 comments \ @ch0k1 16 Sep 2025 news
'Sha1-Hulud' npm malware is back
377 sats \ 0 comments \ @anon 28 Nov 2025 lightning
Self Propagating NPM Malware Compromises over 40 Packageswww.stepsecurity.io/blog/ctrl-tinycolor-and-40-npm-packages-compromised
130 sats \ 0 comments \ @hn 16 Sep 2025 tech
Hugging Face, the GitHub of AI, Hosted Code That Backdoored User Devicesarstechnica.com/security/2024/03/hugging-face-the-github-of-ai-hosted-code-that-backdoored-user-devices/
81 sats \ 1 comment \ @0xbitcoiner 3 Mar 2024 security
The XZ Backdoor: Everything You Need to Knowwww.wired.com/story/xz-backdoor-everything-you-need-to-know/#intcid=recommendations_wired-bottom-recirc-v4_cf3e2538-ba66-4408-a9c0-3af3ee784b35_similar2-3_fallback_cral2-2
74 sats \ 0 comments \ @nym 25 Apr 2024 security
Nearly 20% of Docker Hub Repositories Spread Malware & Phishing Scamsjfrog.com/blog/attacks-on-docker-with-millions-of-malicious-repositories-spread-malware-and-phishing-scams/
164 sats \ 1 comment \ @nym 30 Apr 2024 security
Hackers Trick Users to Install Malware Via Weaponized PDFgbhackers.com/hackers-trick-users-to-install-malware-via-weaponized-pdf/
221 sats \ 0 comments \ @ch0k1 17 Mar 2024 security
Iran-Linked UNC1549 Hackers Target Middle East Aerospace & Defense Sectorsthehackernews.com/2024/02/iran-linked-unc1549-hackers-target.html
547 sats \ 0 comments \ @doofus 29 Feb 2024 security
Black Cat Hacker Group with Fake Notepad++ Sites to Install Malware & Steal Datacybersecuritynews.com/black-cat-hacker-group-with-fake-notepad-sites/
193 sats \ 1 comment \ @winteryeti 8 Jan tech
xz-utils backdoor situationgist.github.com/thesamesam/223949d5a074ebc3dce9ee78baad9e27
1627 sats \ 4 comments \ @ch0k1 30 Mar 2024 security
Over 100,000 Infected Repos Found on GitHub
1697 sats \ 6 comments \ @0xbitcoiner 29 Feb 2024 security
Disrupting first reported AI-orchestrated cyber espionage campaign - Anthropicwww.anthropic.com/news/disrupting-AI-espionage
457 sats \ 1 comment \ @Scoresby 13 Nov 2025 AI
AI-powered Pentesting Tool 'Villager' Combines Kali Linux Tools with DeepSeekcybersecuritynews.com/villager-ai-powered-pentesting-tool/
200 sats \ 0 comments \ @ch0k1 13 Sep 2025 security
Malicious PyPi package steals Discord auth tokens from devswww.bleepingcomputer.com/news/security/malicious-pypi-package-steals-discord-auth-tokens-from-devs/
159 sats \ 0 comments \ @ch0k1 18 Jan 2025 security
We Just Found Malicious Code in the Popular NPM Packagejdstaerk.substack.com/p/we-just-found-malicious-code-in-the
1497 sats \ 18 comments \ @kristapsk 8 Sep 2025 security
Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokensthehackernews.com/2026/02/malicious-npm-packages-harvest-crypto.html
30 sats \ 0 comments \ @winteryeti 25 Feb tech
Distillation, Experimentation, and Integration of AI for Adversarial Usecloud.google.com/blog/topics/threat-intelligence/distillation-experimentation-integration-ai-adversarial-use
335 sats \ 0 comments \ @0xbitcoiner 13 Feb AI
Backdoor Slipped Into Popular Code Library, Drains ~$155k From SOL Walletsarstechnica.com/information-technology/2024/12/backdoor-slips-into-popular-code-library-drains-155k-from-digital-wallets/
181 sats \ 0 comments \ @0xbitcoiner 5 Dec 2024 security
Health And Fitness Bot : Extended Guide
1182 sats \ 8 comments \ @noknees 8 Jun 2025 HealthAndFitness
NPM debug and chalk packages compromisedwww.aikido.dev/blog/npm-debug-and-chalk-packages-compromised
263 sats \ 0 comments \ @hn 8 Sep 2025 tech