NPM

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack

Mastra, North Korea, NPM, supply chain attack, Supply Chain Security /

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack 2026-06-22 at 14:10 By Ionut Arghire A malicious dependency the attackers added to over 140 Mastra packages fetches a payload targeting cryptocurrency extensions. The post North Korean Hackers Blamed for Mastra NPM Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from […]

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack Read More »

Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages

Arch Linux, AUR, Linux, Malware & Threats, NPM, supply chain attack, Supply Chain Security /

Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages 2026-06-16 at 13:51 By Ionut Arghire Arch Linux suspended account registrations in response to the wave of malicious packages being uploaded to AUR. The post Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages Read More »

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

GitHub, NPM, supply chain, Supply Chain Security /

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks 2026-06-13 at 18:52 By Ionut Arghire By default, npm install will no longer execute scripts from dependencies, unless explicitly allowed. The post NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks appeared first on SecurityWeek. This article is an excerpt

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks Read More »

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Malware & Threats, NPM, PyPI, Shai-Hulud, supply chain attack, Supply Chain Security /

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks 2026-06-09 at 15:21 By Ionut Arghire The most recent variants of the self-propagating attacks are named Miasma and Hades. The post Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks appeared first on SecurityWeek. This article is an excerpt from

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks Read More »

Supply Chain Attack Hits 32 Red Hat NPM Packages

Featured, NPM, Red Hat, supply chain attack, Supply Chain Security /

Supply Chain Attack Hits 32 Red Hat NPM Packages 2026-06-02 at 15:46 By Ionut Arghire Hackers published 96 malicious package versions, injected with a credential-stealing worm similar to Mini Shai-Hulud. The post Supply Chain Attack Hits 32 Red Hat NPM Packages appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Supply Chain Attack Hits 32 Red Hat NPM Packages Read More »

1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom

Intercomp, Lightning, Mini Shai-Hulud, NPM, SAP, Shai-Hulud, supply chain attack, Supply Chain Security /

1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom 2026-05-01 at 10:33 By Ionut Arghire The compromised Lightning and Intercom packages have a combined monthly download count of nearly 10 million. The post 1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom Read More »

SAP NPM Packages Targeted in Supply Chain Attack

Malware & Threats, NPM, SAP, Shai-Hulud, supply chain attack, Supply Chain Security, TeamPCP /

SAP NPM Packages Targeted in Supply Chain Attack 2026-04-30 at 17:35 By Ionut Arghire The Mini Shai-Hulud attack introduced a preinstall hook to fetch and execute a Bun binary and bypass security monitoring. The post SAP NPM Packages Targeted in Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

SAP NPM Packages Targeted in Supply Chain Attack Read More »

Bitwarden NPM Package Hit in Supply Chain Attack

Bitwarden, NPM, Shai-Hulud, supply chain attack, Supply Chain Security, TeamPCP /

Bitwarden NPM Package Hit in Supply Chain Attack 2026-04-24 at 11:27 By Ionut Arghire Tied to a fresh Checkmarx supply chain attack claimed by TeamPCP, the incident references the Shai-Hulud worm. The post Bitwarden NPM Package Hit in Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Bitwarden NPM Package Hit in Supply Chain Attack Read More »

Guardarian Users Targeted With Malicious Strapi NPM Packages

Malware & Threats, NPM, Strapi, supply chain attack, Supply Chain Security /

Guardarian Users Targeted With Malicious Strapi NPM Packages 2026-04-06 at 15:32 By Ionut Arghire Hackers published 36 NPM packages posing as Strapi plugins to execute shells, escape containers, and harvest credentials. The post Guardarian Users Targeted With Malicious Strapi NPM Packages appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Guardarian Users Targeted With Malicious Strapi NPM Packages Read More »

Axios NPM Package Breached in North Korean Supply Chain Attack

Application Security, Axios, Featured, North Korea, NPM, supply chain attack, Supply Chain Security /

Axios NPM Package Breached in North Korean Supply Chain Attack 2026-04-01 at 11:46 By Ionut Arghire A long-lived NPM access token was used to bypass the GitHub Actions OIDC-based CI/CD publishing workflow and push backdoored package versions. The post Axios NPM Package Breached in North Korean Supply Chain Attack appeared first on SecurityWeek. This article

Axios NPM Package Breached in North Korean Supply Chain Attack Read More »

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

Application Security, Featured, Lapsus$, Malware & Threats, NPM, OSS, PyPI, supply chain attack, TeamPCP /

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI 2026-03-25 at 14:00 By Ionut Arghire The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$. The post From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI appeared

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI Read More »

New ‘Sandworm_Mode’ Supply Chain Attack Hits NPM

Malware & Threats, NPM, Shai-Hulud, supply chain, supply chain attack, worm /

New ‘Sandworm_Mode’ Supply Chain Attack Hits NPM 2026-02-24 at 15:47 By Ionut Arghire The malicious code propagates like a worm, poisons AI assistants, exfiltrates secrets, and contains a destructive dead switch. The post New ‘Sandworm_Mode’ Supply Chain Attack Hits NPM appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

New ‘Sandworm_Mode’ Supply Chain Attack Hits NPM Read More »

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks

NPM, supply chain, supply chain attack, Supply Chain Security /

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks 2026-01-27 at 15:49 By Ionut Arghire The protections against NPM supply chain attacks could be bypassed, leading to arbitrary code execution. The post ‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks Read More »

NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data

Malware, Malware & Threats, NPM /

NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data 2025-12-23 at 13:16 By Ionut Arghire The package provides legitimate functionality to evade detection, while stealing users’ data and deploying a backdoor. The post NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data Read More »

640 NPM Packages Infected in New ‘Shai-Hulud’ Supply Chain Attack

Malware, Malware & Threats, NPM, Shai-Hulud, supply chain /

640 NPM Packages Infected in New ‘Shai-Hulud’ Supply Chain Attack 2025-11-25 at 12:58 By Ionut Arghire The new self-replicating worm iteration has destructive capabilities, erasing home directory contents if it cannot spread to more repositories. The post 640 NPM Packages Infected in New ‘Shai-Hulud’ Supply Chain Attack appeared first on SecurityWeek. This article is an

640 NPM Packages Infected in New ‘Shai-Hulud’ Supply Chain Attack Read More »

Amazon Detects 150,000 NPM Packages in Worm-Powered Campaign 

Amazon, Application Security, Big Red, IndonesianFoods, NPM, worm /

Amazon Detects 150,000 NPM Packages in Worm-Powered Campaign  2025-11-14 at 12:40 By Ionut Arghire A financially motivated threat actor automated the package publishing process in a coordinated tea.xyz token farming campaign. The post Amazon Detects 150,000 NPM Packages in Worm-Powered Campaign  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Amazon Detects 150,000 NPM Packages in Worm-Powered Campaign  Read More »

Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm

Big Red, IndonesianFoods, Malware & Threats, NPM, worm /

Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm 2025-11-13 at 15:18 By Ionut Arghire The spam campaign is likely orchestrated by an Indonesian threat actor, based on code comments and the packages’ random names. The post Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm appeared first on SecurityWeek. This article is

Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm Read More »

Critical Flaw in Popular React Native NPM Package Exposes Developers to Attacks

Application Security, NPM, React Native, vulnerability /

Critical Flaw in Popular React Native NPM Package Exposes Developers to Attacks 2025-11-04 at 18:39 By Eduard Kovacs Arbitrary command/code execution has been demonstrated through the exploitation of CVE-2025-11953 on Windows, macOS and Linux.  The post Critical Flaw in Popular React Native NPM Package Exposes Developers to Attacks appeared first on SecurityWeek. This article is

Critical Flaw in Popular React Native NPM Package Exposes Developers to Attacks Read More »

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times

infostealer, Malware, Malware & Threats, NPM /

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times 2025-10-30 at 12:59 By Ionut Arghire The packages deployed malicious code harvesting system information, credentials, tokens, API keys, and other sensitive information. The post 136 NPM Packages Delivering Infostealers Downloaded 100,000 Times appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times Read More »

Scroll to Top