Organization
npm
5 stories · sorted newest first · 📡 RSS
Security Breach: Threat Actors Exploit GitHub and npm Packages for Unauthorized Access
Recent attacks on popular development tools like GitHub repositories and npm packages have compromised sensitive data, highlightin
Miasma Malware Compromises NPM Packages with High Download Rates
A sophisticated attack compromised npm packages, including some with hundreds of thousands of monthly downloads, using a previousl
NPM Ecosystem Hit by Supply Chain Attack, TeamPCP Uses Malicious Worm Toolchain
A devastating attack compromised 42 packages from the @tanstack namespace and spread to dozens of other maintainers. The worm prod
Miasma Worm Compromises Microsoft GitHub Repositories: Potential Threat to AI Coding Tools
A sophisticated supply chain attack on June 5, 2026, compromised 73 Microsoft GitHub repositories using the Miasma worm. The attac
Malicious npm Package Discovered: PostCSS-Minify-Selector-Parser Delivers Windows RAT
A fake PostCSS tool, postcss-minify-selector-parser, was found to deliver a multi-stage Windows remote access trojan (RAT) to deve