JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

The recent attack on the Node Package Manager (NPM) packages of a well-known developer, Josh Junon, known as "qix," has been ...

Note: If you’re using MetaMask, Phantom, Trust Wallet, or any crypto app, the advice is simple, take your time, check every ...

Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...

A recent supply chain hack has seen malware injected into NPM packages with over 2.6Bn weekly downloads after compromising a ...

An NPM supply chain attack has prompted Ledger Chief Technology Officer Charles Guillemet to urge crypto users to pause ...

During the two-hour window on Monday in which hijacked npm versions were available for download, malware-laced packages ...

The supply chain npm attack did not steal millions in crypto, despite initial fears. The wallets used in the attack only ...

A serious security scare has hit the open-source software world, and it’s got big implications for crypto. Ledger’s chief ...

Crims have added backdoors to at least 18 npm packages after developer Josh Junon inadvertently authorized a reset of the two ...

Hackers launched the largest NPM crypto attack in history and compromised 18 JavaScript packages with billions of downloads.