npm 33

• CanisterWorm: npm Publisher Compromise Deploys Backdoor Across 29+ Packages Mar 20, 2026
• SANDWORM_MODE: Shai-Hulud-Style npm Worm Hijacks CI Workflows and Poisons AI Toolchains Feb 20, 2026
• Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations Dec 23, 2025
• Inside the GitHub Infrastructure Powering North Korea's Contagious Interview npm Attacks Nov 26, 2025
• Shai Hulud Strikes Again (v2) Nov 24, 2025
• North Korea's Contagious Interview Campaign Escalates: 338 Malicious npm Packages, 50,000 Downloads Oct 10, 2025
• Popular Tinycolor npm Package Compromised in Supply Chain Attack Affecting 40+ Packages Sep 15, 2025
• Wallet-Draining npm Package Impersonates Nodemailer to Hijack Crypto Transactions Aug 29, 2025
• Surveillance Malware Hidden in npm and PyPI Packages Targets Developers with Keyloggers, Webcam Capture, and Credential Theft Jul 23, 2025
• npm 'is' Package Hijacked in Expanding Supply Chain Attack Jul 22, 2025
• Contagious Interview Campaign Escalates With 67 Malicious npm Packages and New Malware Loader Jul 14, 2025
• Another Wave: North Korean Contagious Interview Campaign Drops 35 New Malicious npm Packages Jun 25, 2025
• 2025 Blockchain and Cryptocurrency Threat Report: Malware in the Open Source Supply Chain Jun 12, 2025
• 60 Malicious npm Packages Leak Network and Host Data in Active Malware Campaign May 23, 2025
• Malicious Koishi Chatbot Plugin Exfiltrates Messages Triggered by 8-Character Hex Strings May 19, 2025
• The Landscape of Malicious Open Source Packages: 2025 Mid‑Year Threat Report May 14, 2025
• Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS May 7, 2025
• The Bad Seeds: Malicious npm and PyPI Packages Pose as Developer Tools to Steal Wallet Credentials Apr 22, 2025
• Lazarus Expands Malicious npm Campaign: 11 New Packages Add Malware Loaders and Bitbucket Payloads Apr 4, 2025
• Black Basta's Dependency Confusion Ambitions and Ransomware in Open Source Ecosystems Mar 19, 2025
• Lazarus Strikes npm Again with New Wave of Malicious Packages Mar 10, 2025
• North Korean APT Lazarus Targets Developers with Malicious npm Package Jan 29, 2025
• Gmail For Exfiltration: Malicious npm Packages Target Solana Private Keys and Drain Victims' Wallets Jan 8, 2025
• Weaponizing OAST: How Malicious Packages Exploit npm, PyPI, and RubyGems for Data Exfiltration and Recon Jan 3, 2025
• Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts Dec 20, 2024
• Skuld Infostealer Returns to npm with Fake Windows Utilities and Malicious Solara Development Packages Dec 18, 2024
• Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft Nov 27, 2024
• Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries Nov 22, 2024
• Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets Nov 19, 2024
• Roblox Developers Targeted with npm Packages Infected with Skuld Infostealer and Blank Grabber Nov 8, 2024
• Massive npm Malware Campaign Leverages Ethereum Smart Contracts To Evade Detection and Maintain Control Oct 31, 2024
• Author Typosquatting on npm: Attackers Impersonate Sindre Sorhus with Malicious 'chalk-node' Package Oct 31, 2024
• Noxia: Emerging Dark Web Hosting Provider Targets Python, Node.js, Go, and Rust Ecosystems Oct 23, 2024