Home Posts tagged "npm"

npm

Tens of malicious NPM packages caught hijacking Discord servers

Researches from cybersecurity firm JFrog found 17 malicious packages on the NPM package...

December 9, 2021  By Pierluigi Paganini

GitHub addressed two major vulnerabilities in the NPM package manager

Maintainers of the npm package manager for the JavaScript programming...

November 16, 2021  By Pierluigi Paganini

Supply-chain attack on NPM Package UAParser, which has millions of daily downloads

The U.S. CISA warned of crypto-mining malware hidden in a popular...

October 23, 2021  By Pierluigi Paganini

Popular NPM package Pac-Resolver affected by a critical flaw

Experts found a critical flaw, tracked as CVE-2021-23406, in the popular...

September 14, 2021  By Pierluigi Paganini

Malicious npm packages spotted delivering njRAT Trojan

npm security staff removed two packages that contained malicious code...

December 1, 2020  By Pierluigi Paganini

Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware

Sonatype’s deep dive research allowed to identify a new family of Discord...

November 23, 2020  By Pierluigi Paganini

Malicious npm package ‘fallguys’ removed from the official repository

The npm security team removed a malicious JavaScript library from the npm repository...

August 30, 2020  By Pierluigi Paganini

Experts found binary planting and arbitrary file overwrite flaws in NPM

NPM, the biggest package manager for JavaScript libraries, has addressed...

December 16, 2019  By Pierluigi Paganini

The npm installer for PureScript package has been compromised

It has happened again, another JavaScript package in the npm registry has...

July 15, 2019  By Pierluigi Paganini