npm Archives • Information Security News

Poisoning the Pipeline: How the “Frank” Campaign Targeted Apple and Google via NPM Dependency Confusion npm

Poisoning the Pipeline: How the “Frank” Campaign Targeted Apple and Google via NPM Dependency Confusion

ddos May 12, 2026

Cybersecurity specialists have exposed a pervasive malicious campaign targeting developers, wherein the adversary bypassed the compromise of...

Desert Power in the Code: How the “Mini Shai-Hulud” Malware Burrows into SAP’s npm Supply Chain PhantomVAI malware loader npm Token Farming SesameOp Malware Flyoobe Malware FlipSwitch Rootkit fezbox Malware ModStealer Malware NightshadeC2 OldGremlin AI ransomware LummaStealer Qilin, ransomware-as-a-service Human Cybersecurity Ransomware ACRStealer Interlock Ransomware OVERSTEP Rootkit Malduck WordPress Malware

PhantomVAI malware loader npm Token Farming SesameOp Malware Flyoobe Malware FlipSwitch Rootkit fezbox Malware ModStealer Malware NightshadeC2 OldGremlin AI ransomware LummaStealer Qilin, ransomware-as-a-service Human Cybersecurity Ransomware ACRStealer Interlock Ransomware OVERSTEP Rootkit Malduck WordPress Malware

Desert Power in the Code: How the “Mini Shai-Hulud” Malware Burrows into SAP’s npm Supply Chain

ddos May 4, 2026

Adversaries have once again targeted the npm supply chain, though this incursion pursued a surgical and perilous...

The Podcast Trap: How UNC1069’s AI Deepfakes Are Poisoning the Global npm Registry

ddos April 8, 2026

What begins as a mundane exchange—an invitation to a podcast or a routine professional briefing—may serve as...

The 15-Second Takeover: How North Korea’s UNC1069 Hijacked Axios and 100 Million Users

ddos April 6, 2026

The ubiquitous JavaScript library axios, a cornerstone utilized by millions of digital architectures, was transfigured for several...

Ninety Seconds to Compromise: The Viral Hijack of the Axios NPM Package

ddos April 1, 2026

The ubiquitous axios library, an indispensable cornerstone of contemporary web development, has abruptly found itself at the...

The Great AI Contagion: How TeamPCP and Vect are Conscripting a Dark Web Army

ddos March 30, 2026

The compromise of a widely utilized library for artificial intelligence projects has escalated into a crisis far...

CanisterWorm: The Self-Propagating npm Epidemic Turning Developers into Vectors

ddos March 27, 2026

An attack upon a single, ubiquitous instrument has imperceptibly metamorphosed into a catastrophic chain reaction, presently contaminating...

Surgical Strike on DeFi: How Hijacked dYdX Packages Drained Wallets via npm and PyPI

ddos February 10, 2026

Security analysts at Socket have unmasked a surgical supply chain incursion targeting the libraries associated with the...

n8mare on Auth Street: First n8n Supply Chain Attack Steals OAuth Tokens

ddos January 14, 2026

A sophisticated supply chain offensive recently compromised the n8n workflow automation ecosystem, as adversaries infiltrated the npm...

The Discord Trojan: New NodeCordRAT Hijacks Bitcoin-Themed npm Packages

ddos January 13, 2026

Security researchers at Zscaler have unearthed a sophisticated campaign exploiting prevalent cryptocurrency themes. Three deleterious libraries were...

PDF Data Exfiltration: Critical 9.2 jsPDF Flaw Leaks Server Secrets University Cyberattacks Hacktivism Hanoi convention IT inspection Asterisk telephony Medical Data Breach Zero Trust Flaws MI6 Silent Courier Jaguar Land Rover cyberattack Clear NDR Zeppelin ransomware FTC encryption McDonald's security AI agents Radio Encryption

University Cyberattacks Hacktivism Hanoi convention IT inspection Asterisk telephony Medical Data Breach Zero Trust Flaws MI6 Silent Courier Jaguar Land Rover cyberattack Clear NDR Zeppelin ransomware FTC encryption McDonald's security AI agents Radio Encryption

PDF Data Exfiltration: Critical 9.2 jsPDF Flaw Leaks Server Secrets

ddos January 12, 2026

A critical vulnerability has been unearthed within the ubiquitous JavaScript library jsPDF, a tool primarily utilized for...

The Worm in the Code: How the Shai-Hulud npm Attack Hijacked Trust Wallet

ddos January 5, 2026

A large-scale supply chain compromise known as Shai-Hulud has been linked to the recent theft of approximately...

The Silent Sync: How the “lotusbail” npm Package Hijacks WhatsApp Accounts Insider Threat RondoDox Botnet Stellantis data breach DDoS-for-Hire OAG ransomware Zeppelin ToolShell Chain Iran Cyber Threat UK Retail Cyberattack, CMC Financial Impact Indonesia spyware

Insider Threat RondoDox Botnet Stellantis data breach DDoS-for-Hire OAG ransomware Zeppelin ToolShell Chain Iran Cyber Threat UK Retail Cyberattack, CMC Financial Impact Indonesia spyware

The Silent Sync: How the “lotusbail” npm Package Hijacks WhatsApp Accounts

ddos December 24, 2025

A malicious package named lotusbail has been uncovered in the npm repository, masquerading as a library for...

PostHog Hacked: Shai-Hulud 2.0 Worm Steals 25,000+ Developer Secrets via npm

ddos December 2, 2025

For the PostHog team, developers of an open-source analytics platform, the recent npm-based attack has become the...

N. Korea’s Contagious Interview Campaign Targets Job Seekers with 197 Malicious npm Packages

ddos December 2, 2025

North Korea’s Contagious Interview malware campaign continues to escalate its pressure on the JavaScript-development ecosystem. Threat actors...

150,000 Package Flood: Amazon Uncovers Massive Token-Farming Attack on npm Registry PhantomVAI malware loader npm Token Farming SesameOp Malware Flyoobe Malware FlipSwitch Rootkit fezbox Malware ModStealer Malware NightshadeC2 OldGremlin AI ransomware LummaStealer Qilin, ransomware-as-a-service Human Cybersecurity Ransomware ACRStealer Interlock Ransomware OVERSTEP Rootkit Malduck WordPress Malware

150,000 Package Flood: Amazon Uncovers Massive Token-Farming Attack on npm Registry

ddos November 18, 2025

One of the largest supply-chain attacks ever recorded in the npm ecosystem has been uncovered, marking a...

npm

Poisoning the Pipeline: How the “Frank” Campaign Targeted Apple and Google via NPM Dependency Confusion

Ninety Seconds to Compromise: The Viral Hijack of the Axios NPM Package

The Great AI Contagion: How TeamPCP and Vect are Conscripting a Dark Web Army

CanisterWorm: The Self-Propagating npm Epidemic Turning Developers into Vectors

Surgical Strike on DeFi: How Hijacked dYdX Packages Drained Wallets via npm and PyPI

n8mare on Auth Street: First n8n Supply Chain Attack Steals OAuth Tokens

The Discord Trojan: New NodeCordRAT Hijacks Bitcoin-Themed npm Packages

PDF Data Exfiltration: Critical 9.2 jsPDF Flaw Leaks Server Secrets

The Worm in the Code: How the Shai-Hulud npm Attack Hijacked Trust Wallet

The Silent Sync: How the “lotusbail” npm Package Hijacks WhatsApp Accounts

PostHog Hacked: Shai-Hulud 2.0 Worm Steals 25,000+ Developer Secrets via npm

N. Korea’s Contagious Interview Campaign Targets Job Seekers with 197 Malicious npm Packages

150,000 Package Flood: Amazon Uncovers Massive Token-Farming Attack on npm Registry

You may have missed

Beyond the Bot: LinkedIn’s New Algorithm Targets AI Slop to Restore Professional Authenticity

Beyond AirPlay: Apple May Finally Allow Google Cast as System-Default in iOS 27

The War for Your Documents: Why The Document Foundation is Challenging Microsoft’s OOXML Monopoly

Urgent Patch: Microsoft Defender Update Fixes Critical SYSTEM-Level Privilege Escalation Flaw