NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...

A cryptocurrency thief got into the npm account of a hard-working developer via spearphishing. node.js packages with billions ...

Earlier this week, the Npm package manager suffered what may be its worst security incident to date. Unknown cybercriminals ...

In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after ...

Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to steal funds.

Charles Guillemet says a phishing-led supply-chain breach could have become a systemic disaster for crypto users.

Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after ...

Ledger's CTO Charles Guillemet warned of a large-scale supply chain attack, potentially stealing crypto from common software ...

Ledger CTO urged hardware wallet users to verify every transaction amid a large-scale supply chain attack. Analysts warned ...

Ledger CTO warns of supply chain cyberattack on JavaScript packages used by over a billion users. Hardware wallets remain ...

Multiple npm packages have been compromised by a phishing attack in an attempt to spread crypto malware to billions of victims.