セキュリティ研究者 によると、JavaScriptのソフトウェアライブラリを狙った大規模なサプライチェーン攻撃で、ハッカーが奪った仮想通貨はわずか50ドル相当だったという。

A cryptocurrency thief got into the npm account of a hard-working developer via spearphishing. node.js packages with billions ...

Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...

NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...

Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to ...

A large-scale supply chain attack on the JavaScript ecosystem has prompted an urgent warning from Ledger’s chief technology ...

Multiple npm packages have been compromised by a phishing attack in an attempt to spread crypto malware to billions of ...

"debug" package attack failed; malicious update detected early, minimal impact. Developers urged to check their installations ...

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

The credential stealer harvested username, password, and 2FA codes before sending them to a remote host. With full access, ...

Key takeawaysCybercriminals hacked 18 NPM packages of a well-known developer to conceal malware.The breach affected several ...

The supply chain npm attack did not steal millions in crypto, despite initial fears. The wallets used in the attack only ...