JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...

Crypto intelligence platform Security Alliance released a report on Sep. 8 to reveal that Ethereum and Solana wallets have ...

Npm packages are reusable blocks of JavaScript code published to the Node Package Manager registry that developers can ...

In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after ...

An NPM supply chain attack has prompted Ledger Chief Technology Officer Charles Guillemet to urge crypto users to pause on-chain transactions.

Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...

NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...

Hackers hijacked popular web code to steal crypto. Users must check every wallet transaction to avoid losing funds.

A serious security scare has hit the open-source software world, and it’s got big implications for crypto. Ledger’s chief ...

Hackers poisoned JavaScript packages with crypto-stealing malware. The large scale attack exposes a DeFi weak point. The attackers have only stolen a minimal amount so far.

SwissBorg hack drains $41.5 million in Solana via staking protocol exploit, sparking refunds, investigations, and concerns ...