资讯

Security Boulevard7 小时

How One Phishing Email Compromised 18 npm Packages and Billions of Installs

On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...
CSO Online9 小时

Massive npm supply chain attack hits 18 popular packages with 2B weekly downloads

Malware hidden in widely used libraries like chalk and debug hijacked crypto transactions via browser APIs, exposing deep ...
Cryptopolitan10 小时

Is Binance’s customer data, assets at risk after major supply chain attack?

Binance reassures customers after a massive NPM supply chain attack injects malicious code into 18 popular JavaScript ...

This 2FA phishing scam pwned a developer - and endangered billions of npm downloads

A new digital supply chain attack has targeted popular open-source npm packages with at least two billion downloads per week. On Sept. 8, Josh Junon, a package maintainer whose account was at the ...

“Avoid On-Chain Transactions”: Ledger CTO Issues Urgent Warning After JavaScript Attack

A large-scale supply chain attack on the JavaScript ecosystem has prompted an urgent warning from Ledger’s chief technology ...

Largest supply chain attack in history targets crypto users through compromised JavaScript ...

A new cyberattack is silently targeting crypto from users during transactions amid an incident that security researchers ...

Hackers hijack npm packages with 2 billion weekly downloads in supply chain attack

In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after ...

Claude Code Starter Template & Beginners Guide to Building Apps

Learn how to create apps easily using Claude Code. This beginner-friendly guide shows you how to build a to-do list app fast.

What Is Remix Ethereum IDE? Your Essential Guide For Smart-Contract Development

What is Remix Ethereum IDE? Come read this essential guide to this web-based tool for smart contract development.