Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after ...

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...

Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were ...

Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...

JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

A JavaScript supply chain attack has delivered a crypto-clipper via 18 npm packages; Ledger’s CTO has warned ...

Hackers hijacked popular web code to steal crypto. Users must check every wallet transaction to avoid losing funds.

In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after ...

SwissBorg hack drains $41.5 million in Solana via staking protocol exploit, sparking refunds, investigations, and concerns ...

A serious security scare has hit the open-source software world, and it’s got big implications for crypto. Ledger’s chief ...