资讯

Security Boulevard5 天

How One Phishing Email Compromised 18 npm Packages and Billions of Installs

On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...
Securities.io3 天

NPM Supply-Chain Attack: What Happened and How to Fix It

Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...

Hackers hijack npm packages with 2 billion weekly downloads in supply chain attack

In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after ...
Opinion
Database Trends and Applications3 天Opinion

DiffusionData Releases Diffusion 6.12 to Address Real-World Developer Challenges

DiffusionData, a pioneer and leader in real-time data streaming, is releasing Diffusion 6.12, introducing enhancements that speed up development, optimize resource usage, and guarantee consistent, ...

Software packages with more than 2 billion weekly downloads hit in supply-chain attack

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

David Beckham and Tommy Fury lead tributes to Ricky Hatton after death aged 46

The boxing legend was found dead at his home.

Ricky Hatton obituary: British boxing has lost its most beloved son

Hatton was the true people’s champion and a legend of British boxing. Metro. 0 Comments. WordPress Embed; HTML Embed ...
Developer Tech5 天

Escalating npm supply chain malware attack drains crypto wallets

An escalating npm supply chain attack has compromised dozens of foundational JavaScript packages to spread malware and drain crypto wallets.