Researchers from Checkmarx detailed about a threat actor leveraging NPM packages to target developers...
NPM Packages
Researchers have discovered malicious packages on the npm and PyPi open-source registries, which could...
Researchers have discovered an attack campaign named Lofylife that uses malicious npm packages, targeting...
Researchers have discovered a supply chain attack that uses packages hosted on the Node...
GitHub plans to introduce MFA as a mandatory requirement for any user who contributes...
Researchers at Aqua’s Team Nautilus published a security advisory on the issue of hijacking...
A trio of tools released by JFrog, to prevent malicious packages from slipping into...
Researchers discovered 17 malicious packages in the NPM (Node.js package manager) repository that were...