pull down to refresh

Tinycolor npm Package Compromised in (another) Supply Chain Attacksocket.dev/blog/tinycolor-supply-chain-attack-affects-40-packages
1053 sats \ 3 comments \ @aljaz 16 Sep 2025 security
related
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaignthehackernews.com/2026/04/bitwarden-cli-compromised-in-ongoing.html
1134 sats \ 5 comments \ @Scoresby 23 Apr tech devs
'Sha1-Hulud' npm malware is back
377 sats \ 0 comments \ @anon 28 Nov 2025 lightning
TanStack NPM Packages Compromisedgithub.com/TanStack/router/issues/7383
1054 sats \ 7 comments \ @hn 11 May tech
🚨 CRITICAL: supply chain attack on axios
1626 sats \ 8 comments \ @justin_shocknet 31 Mar devs
Npm Run Hack:Me - A Supply Chain Attack Journeyrxj.dev/posts/npm-run-hack-supply-chain-attack-journey/
661 sats \ 1 comment \ @k00b 12 Mar 2025 devs
NPM security: preventing supply chain attacks | Snyk (2022)snyk.io/blog/npm-security-preventing-supply-chain-attacks/
517 sats \ 20 comments \ @ek 9 Sep 2025 security
We Just Found Malicious Code in the Popular NPM Packagejdstaerk.substack.com/p/we-just-found-malicious-code-in-the
1497 sats \ 18 comments \ @kristapsk 8 Sep 2025 security
Compromised npm package silently installs OpenClaw on developer machineswww.csoonline.com/article/4135449/compromised-npm-package-silently-installs-openclaw-on-developer-machines.html
422 sats \ 4 comments \ @winteryeti 24 Feb AI
NPM debug and chalk packages compromisedwww.aikido.dev/blog/npm-debug-and-chalk-packages-compromised
263 sats \ 0 comments \ @hn 8 Sep 2025 tech
Axios supply chain attack post mortemgithub.com/axios/axios/issues/10636
3212 sats \ 9 comments \ @WeAreAllSatoshi 3 Apr AI tech privacy devs
GitHub suffers a cascading supply chain attack compromising CI/CD secretswww.infoworld.com/article/3849245/github-suffers-a-cascading-supply-chain-attack-compromising-ci-cd-secrets.html
389 sats \ 2 comments \ @ch0k1 21 Mar 2025 security
How to Verify the Impact of the Recent NPM Attack on My Wallets?
430 sats \ 29 comments \ @spiderman 11 Sep 2025 bitcoin
PhantomRaven: NPM Malware Hidden in Invisible Dependencieswww.koi.ai/blog/phantomraven-npm-malware-hidden-in-invisible-dependencies
389 sats \ 2 comments \ @kepford 30 Oct 2025 security
Which npm package has the largest version number?adamhl.dev/blog/largest-number-in-npm-package/
200 sats \ 3 comments \ @carter 15 Sep 2025 devs
Alert: ledger library confirmed compromised and replaced with a drainer.
6146 sats \ 48 comments \ @IgnaciobTato 14 Dec 2023 privacy
Hacking campaign compromised at least 16 Chrome browser extensionssecurityaffairs.com/172491/hacking/chrome-browser-extensions-compromise.html
266 sats \ 0 comments \ @nym 1 Jan 2025 security
How the Coinos nsec got compromised
1087 sats \ 14 comments \ @ek 29 Sep 2025 security
ECONNREFUSED for `npm install -g pnpm`. help?
259 sats \ 5 comments \ @deSign_r 24 Oct 2024 devs
Trust Wallet browser extension compromised by supply chain attackx.com/0xakinator/status/2004273944694587785
547 sats \ 8 comments \ @Scoresby 26 Dec 2025 bitcoin
Supply Chain Attack in litellm 1.82.8 on PyPIfuturesearch.ai/blog/litellm-pypi-supply-chain-attack/
373 sats \ 0 comments \ @Scoresby 24 Mar devs
Mash NPM Package for Lightning Monetization & Walletstwitter.com/mmmmsterdev/status/1585635470922633217
5513 sats \ 8 comments \ @jarednxx 27 Oct 2022 bitcoin