Malicious npm package targets wallet addresses in Atomic and Exodus, stealing crypto through fake PDF tool downloads.

Malicious npm package pdf-to-office trojanizes Atomic Wallet, Exodus apps to steal crypto funds, persisting after deletion.

Security researchers from Reversing Labs find two malicious packages on npm These serve as downloaders and target software developers building on the Ethereum blockchain The malware opens a reverse ...

North Korean actors used 11 npm packages downloaded 5,600+ times to spread BeaverTail malware, expanding attacks to Bitbucket ...

The ReversingLabs has discovered a campaign targeting specific versions of Exodus and Atomic wallets installed on victims' ...

Nearly a dozen crypto packages on NPM, including one published 9 years ago, have been hijacked to deliver infostealers.

Hallucinated package names fuel 'slopsquatting' The rise of AI-powered code generation tools is reshaping how developers ...

Cybersecurity researchers are sounding the alarm on troubling software exploits hidden in software packages that are designed ...

NPM-139 and its emerging pipeline of innovative miniature, ultra long-acting drug implants to treat patients with chronic diseases and high unmet medical need. The recent preclinical demonstration of ...

Unlike some other public repositories, the npm package repository is never really quiet. And, while there has been some decline in malware numbers between 2023 and 2024, this year's numbers don’t seem ...

North Korea's Lazarus Group expanded a malicious campaign of uploading malicious code to the JavaScript runtime environment ...