pull down to refresh

NPM debug and chalk packages compromisedwww.aikido.dev/blog/npm-debug-and-chalk-packages-compromised
263 sats \ 0 comments \ @hn 8 Sep 2025 tech
related
TanStack NPM Packages Compromisedgithub.com/TanStack/router/issues/7383
1054 sats \ 7 comments \ @hn 11 May tech
Tinycolor npm Package Compromised in (another) Supply Chain Attacksocket.dev/blog/tinycolor-supply-chain-attack-affects-40-packages
1053 sats \ 3 comments \ @aljaz 16 Sep 2025 security
Multiple redhat-cloud-services npm Packages compromised - StepSecuritywww.stepsecurity.io/blog/multiple-redhat-cloud-services-npm-packages-compromised
776 sats \ 1 comment \ @winteryeti 2 Jun tech
🚨 CRITICAL: supply chain attack on axios
1626 sats \ 8 comments \ @justin_shocknet 31 Mar devs
Compromised npm package silently installs OpenClaw on developer machineswww.csoonline.com/article/4135449/compromised-npm-package-silently-installs-openclaw-on-developer-machines.html
422 sats \ 4 comments \ @winteryeti 24 Feb AI
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaignthehackernews.com/2026/04/bitwarden-cli-compromised-in-ongoing.html
1134 sats \ 5 comments \ @Scoresby 23 Apr tech devs
400+ AUR Packages Compromised with Infostealer and Rootkitdiscourse.ifin.network/t/400-aur-packages-compromised-with-infostealer-and-rootkit/577
288 sats \ 4 comments \ @k00b 12 Jun security tech
Google broke reCAPTCHA for de-googled Android usersreclaimthenet.org/google-broke-recaptcha-for-de-googled-android-users
1281 sats \ 5 comments \ @hn 8 May tech
'Sha1-Hulud' npm malware is back
377 sats \ 0 comments \ @anon 28 Nov 2025 lightning
Show HN: A web debugger an ex-Cloudflare team has been working on for 4 yearsnews.ycombinator.com/item?id=40318542
378 sats \ 1 comment \ @hn 10 May 2024 tech
We Just Found Malicious Code in the Popular NPM Packagejdstaerk.substack.com/p/we-just-found-malicious-code-in-the
1497 sats \ 18 comments \ @kristapsk 8 Sep 2025 security
LittleSnitch for Linuxobdev.at/products/littlesnitch-linux/index.html
357 sats \ 1 comment \ @hn 9 Apr tech
NPM security: preventing supply chain attacks | Snyk (2022)snyk.io/blog/npm-security-preventing-supply-chain-attacks/
517 sats \ 20 comments \ @ek 9 Sep 2025 security
ECONNREFUSED for `npm install -g pnpm`. help?
259 sats \ 5 comments \ @deSign_r 24 Oct 2024 devs
Alert: ledger library confirmed compromised and replaced with a drainer.
6146 sats \ 48 comments \ @IgnaciobTato 14 Dec 2023 privacy
The Insecurity of Debianunix.foo/posts/insecurity-of-debian/
232 sats \ 1 comment \ @hn 4 Sep 2024 tech
Internet Archive: Security breach alertwww.theverge.com/2024/10/9/24266419/internet-archive-ddos-attack-pop-up-message
278 sats \ 1 comment \ @hn 9 Oct 2024 tech
Hacking 700M Electronic Arts Accountsbattleda.sh/blog/ea-account-takeover
637 sats \ 0 comments \ @hn 5 Nov 2024 tech
Supply Chain Attack in litellm 1.82.8 on PyPIfuturesearch.ai/blog/litellm-pypi-supply-chain-attack/
373 sats \ 0 comments \ @Scoresby 24 Mar devs
Ask.com has closedwww.ask.com/
801 sats \ 1 comment \ @hn 2 May tech
GrapheneOS user reported to authorities for using GrapheneOSdiscuss.grapheneos.org/d/36134-grapheneos-user-reported-to-authorities-for-using-grapheneos
267 sats \ 2 comments \ @hn 6 Jun tech