pull down to refresh

Npm Run Hack:Me - A Supply Chain Attack Journeyrxj.dev/posts/npm-run-hack-supply-chain-attack-journey/
661 sats \ 1 comment \ @k00b 12 Mar 2025 devs
related
NPM security: preventing supply chain attacks | Snyk (2022)snyk.io/blog/npm-security-preventing-supply-chain-attacks/
517 sats \ 20 comments \ @ek 9 Sep 2025 security
Tinycolor npm Package Compromised in (another) Supply Chain Attacksocket.dev/blog/tinycolor-supply-chain-attack-affects-40-packages
1053 sats \ 3 comments \ @aljaz 16 Sep 2025 security
NPM Supply-Chain Attack - check your code for vulnerabilitiesjdstaerk.substack.com/p/we-just-found-malicious-code-in-the
150 sats \ 0 comments \ @nkmg1c_ventures 8 Sep 2025 devs
'Sha1-Hulud' npm malware is back
377 sats \ 0 comments \ @anon 28 Nov 2025 lightning
NPM hack was mentioned multiple times on SN before yesterday
145 sats \ 4 comments \ @h6j5dhc567g 9 Sep 2025 bitdevs
How to Verify the Impact of the Recent NPM Attack on My Wallets?
430 sats \ 29 comments \ @spiderman 11 Sep 2025 bitcoin
We Just Found Malicious Code in the Popular NPM Packagejdstaerk.substack.com/p/we-just-found-malicious-code-in-the
1497 sats \ 18 comments \ @kristapsk 8 Sep 2025 security
Compromised npm package silently installs OpenClaw on developer machineswww.csoonline.com/article/4135449/compromised-npm-package-silently-installs-openclaw-on-developer-machines.html
422 sats \ 4 comments \ @winteryeti 24 Feb AI
Bogus npm Packages Used to Trick Software Developers into Installing Malwarethehackernews.com/2024/04/bogus-npm-packages-used-to-trick.html?m=1
52 sats \ 1 comment \ @ch0k1 28 Apr 2024 security
Are There Some Sample Transactions from the Recent NPM Exploits?
130 sats \ 1 comment \ @spiderman 11 Sep 2025 bitcoin
PhantomRaven: NPM Malware Hidden in Invisible Dependencieswww.koi.ai/blog/phantomraven-npm-malware-hidden-in-invisible-dependencies
389 sats \ 2 comments \ @kepford 30 Oct 2025 security
Snyk security researcher deploys malicious NPM packages targeting Cursor.comsourcecodered.com/snyk-malicious-npm-package/
134 sats \ 0 comments \ @hn 14 Jan 2025 tech
Bun beta announced: new Javascript runtime that’s ~3x faster than Deno/Node - native bundler, transpiler, task runner and npm client built-inbun.sh/
1001 sats \ 1 comment \ @Zk2u 6 Jul 2022 bitcoin
Self-Replicating Worm Hits 180+ Software Packageskrebsonsecurity.com/2025/09/self-replicating-worm-hits-180-software-packages/
75 sats \ 0 comments \ @ch0k1 16 Sep 2025 news
Self Propagating NPM Malware Compromises over 40 Packageswww.stepsecurity.io/blog/ctrl-tinycolor-and-40-npm-packages-compromised
130 sats \ 0 comments \ @hn 16 Sep 2025 tech
Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokensthehackernews.com/2026/02/malicious-npm-packages-harvest-crypto.html
30 sats \ 0 comments \ @winteryeti 25 Feb tech
NPM debug and chalk packages compromisedwww.aikido.dev/blog/npm-debug-and-chalk-packages-compromised
263 sats \ 0 comments \ @hn 8 Sep 2025 tech
GitHub suffers a cascading supply chain attack compromising CI/CD secretswww.infoworld.com/article/3849245/github-suffers-a-cascading-supply-chain-attack-compromising-ci-cd-secrets.html
389 sats \ 2 comments \ @ch0k1 21 Mar 2025 security
My Node Running Journey pt 2.
2042 sats \ 11 comments \ @Fiatrevelation 5 Feb 2025 bitcoin
I built an npm library for L402 Lightning payments
1302 sats \ 0 comments \ @satpath 25 Feb lightning devs
GitHub Developers Hit in Complex Supply Chain Cyberattackwww.darkreading.com/application-security/github-developers-hit-in-complex-supply-chain-cyberattack
125 sats \ 0 comments \ @ch0k1 26 Mar 2024 devs