News

Security Boulevard12h

How One Phishing Email Compromised 18 npm Packages and Billions of Installs

On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...

Massive npm hack poisons 18 packages with billions of downloads

Npm packages are reusable blocks of JavaScript code published to the Node Package Manager registry that developers can ...

This free tool installs Windows 11 on unsupported PCs - without any bloatware

An alternative to Flyby 11 from the same developer, Flyoobe is designed to install Windows 11 on any computer, supported or unsupported. Similar to the popular Rufus software, Flyoobe works by ...

This 2FA phishing scam pwned a developer - and endangered billions of npm downloads

A new digital supply chain attack has targeted popular open-source npm packages with at least two billion downloads per week. On Sept. 8, Josh Junon, a package maintainer whose account was at the ...
Blockonomi15h

JavaScript Libraries with 2 Billion Weekly Downloads Targeted in Crypto Theft Attempt

NPM supply chain attack compromised 18 popular JavaScript packages, swapping crypto wallet addresses, but quick detection ...
CSO Online14h

Massive npm supply chain attack hits 18 popular packages with 2B weekly downloads

Malware hidden in widely used libraries like chalk and debug hijacked crypto transactions via browser APIs, exposing deep ...
Foreign Affairs13h

The Coming Electricity Crisis

After nearly 20 years of flat demand, electricity use is now growing at its fastest rate since World War II. The U.S. economy ...
Foreign Affairs12h

What America Must Do to Meet Surging Demand

After nearly 20 years of flat demand, electricity use is now growing at its fastest rate since World War II. The U.S. economy ...

Crypto users urged to take extreme care as NPM attack hits core JavaScript libraries

Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to ...