NCERT warns of npm supply chain compromise affecting 18 packages, exposing enterprises to crypto theft, credential leaks, and ...

Hackers injected malicious code into nearly a dozen 20 NPM packages with billions of weekly downloads in a software supply chain attack after phishing a maintainer’s account.