资讯

JavaScript packages with billions of downloads were injected with malicious code in world's ...

JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

Major attack on node.js

A cryptocurrency thief got into the npm account of a hard-working developer via spearphishing. node.js packages with billions ...
Cryptopolitan on MSN1 天

Is Binance’s customer data, assets at risk after major supply chain attack?

Binance reassures customers after a massive NPM supply chain attack injects malicious code into 18 popular JavaScript ...
CoinDesk1 天

Ethereum, Solana Wallets Targeted in Massive 'npm' Attack But Just 5 Cents Taken

The credential stealer harvested username, password, and 2FA codes before sending them to a remote host. With full access, ...
Tweakers7 天

Senior node.js Engineer

As Senior Fullstack Engineer you can help us create a more tech-driven culture at NN. You will work with technologies and tools like Node.js, Typescript, AWS, GraphQL, and more to create the best ...
SecurityWeek10 小时

Highly Popular NPM Packages Poisoned in New Supply Chain Attack

Threat actors injected malicious code into multiple popular NPM packages after their maintainers fell for a well-crafted ...

Largest supply chain attack in history targets crypto users through compromised JavaScript ...

A new cyberattack is silently targeting crypto from users during transactions amid an incident that security researchers ...

This 2FA phishing scam pwned a developer - and endangered billions of npm downloads

A new digital supply chain attack has targeted popular open-source npm packages with at least two billion downloads per week. On Sept. 8, Josh Junon, a package maintainer whose account was at the ...

AppJet.ai Launches: A GitHub-Native AI That Codes Full-Stack From Prompt to Deploy

PALO ALTO, CA / ACCESS Newswire / August 27, 2025 / FlashDrive INC today announced the public launch of AppJet.ai, an AI ...