The CrowdStrike npm Supply Chain Attack
The JavaScript ecosystem was rocked in September 2025 by a sweeping npm supply chain attack that compromised over 180 popular packages, including some released under the CrowdStrike namespace. This incident,…
Supply Chain Attack Using NPM
A supply chain attack in a popular JavaScript developer module has been taken place due to Russian invasion on Ukraine. This has been started on March 8 with developer Brandon…
Malicious PyPi Packages Plants Shell
Researchers uncovered 11 malicious Python packages that have been cumulatively downloaded more than 41,000 times from the Python Package Index (PyPI) repository, and could be exploited to steal Discord access…