JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

Crypto intelligence platform Security Alliance released a report on Sep. 8 to reveal that Ethereum and Solana wallets have ...

On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...

Npm packages are reusable blocks of JavaScript code published to the Node Package Manager registry that developers can ...

Charles Guillemet, CTO at the crypto wallet platform Ledger, warned the crypto community to be cautious while executing ...

Hackers hijacked popular web code to steal crypto. Users must check every wallet transaction to avoid losing funds.

An NPM supply chain attack has prompted Ledger Chief Technology Officer Charles Guillemet to urge crypto users to pause on-chain transactions.

Hackers launched the largest NPM crypto attack in history and compromised 18 JavaScript packages with billions of downloads.

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...

A serious security scare has hit the open-source software world, and it’s got big implications for crypto. Ledger’s chief ...

Hackers poisoned JavaScript packages with crypto-stealing malware. The large scale attack exposes a DeFi weak point. The ...

The Bybit attack exploited predictable behaviors and habitual transaction approvals, proving that cybersecurity isn’t just about technology but also about human vigilance. The attack bypassed Bybit’s ...