JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

The recent attack on the Node Package Manager (NPM) packages of a well-known developer, Josh Junon, known as "qix," has been ...

An NPM supply chain attack has prompted Ledger Chief Technology Officer Charles Guillemet to urge crypto users to pause ...

NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by ...

Npm packages are reusable blocks of JavaScript code published to the Node Package Manager registry that developers can ...

The malware was found in 18 npm packages that together are usually downloaded over 2 billion times per week. But the security ...

A JavaScript supply chain attack has delivered a crypto-clipper via 18 npm packages; Ledger’s CTO has warned ...

Less $50 worth of crypto has been stolen from the large-scale JavaScript libraries attack on Monday, which targeted Ethereum ...

A serious security scare has hit the open-source software world, and it’s got big implications for crypto. Ledger’s chief ...

Hackers poisoned JavaScript packages with crypto-stealing malware. The large scale attack exposes a DeFi weak point. The ...