Crypto News6h
Crypto Mining Malware and Open Source Malware Packages Doubled in Q1 2025
Software security platform Sonatype discovered that the amount of crypto mining malware doubled between Q4 2024 and Q1 2025, ...
Bleeping Computer7d
New npm attack poisons local packages with backdoors
What makes this attack so dangerous is even if 'ethers-provider2' is uninstalled, the backdoor on the ethers package won't be removed, and so the legitimate package remains infected. The 'ethers ...
Infosecurity Magazine24y
Malicious npm Packages Deliver Sophisticated Reverse Shells
A newly discovered malware campaign uses malicious npm packages to deploy reverse shells, compromising development ...