News

The Register on MSN1d

Dev snared in crypto phishing net, 18 npm packages compromised

Popular npm packages debug, chalk, and others hijacked in massive supply chain attack Crims have added backdoors to at least ...

Ledger CTO warns of shocking NPM attacks by crypto hackers

Charles Guillemet, CTO at the crypto wallet platform Ledger, warned the crypto community to be cautious while executing ...

Software packages with more than 2 billion weekly downloads hit in supply-chain attack

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...
CoinDesk1d

Ethereum, Solana Wallets Targeted in Massive 'npm' Attack But Just 5 Cents Taken

The credential stealer harvested username, password, and 2FA codes before sending them to a remote host. With full access, ...
Crypto News6d

Hackers Exploit Ethereum to Inject Malware in Popular Coding Libraries

Hackers are exploiting Ethereum smart contracts to inject malware into popular NPM coding libraries, using packages to run ...
The Hacker News6d

Malicious npm Packages Exploit Ethereum Smart Contracts to Target Crypto Developers

Two npm packages hide downloader commands via Ethereum smart contracts; uploaded July 2025; targeting crypto developers.

AI-powered malware hit 2,180 GitHub accounts in “s1ngularity” attack

Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account ...
SecurityWeek13d

Hackers Target Popular Nx Build System in First AI-Weaponized Supply Chain Attack

The popular Nx build system, boasting 4 million downloads each week, was exploited in the first supply chain breach to use AI ...