JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

Malware hidden in widely used libraries like chalk and debug hijacked crypto transactions via browser APIs, exposing deep ...

Ledger's CTO Charles Guillemet warned of a large-scale supply chain attack, potentially stealing crypto from common software ...

Billions (No, that's not a typo, Billions with a capital B) of files were potentially compromised. If you thought Node Package Manager (npm), the Billions of downloads were potentially compromised ...

The successful phishing attack on Junon resulted in at least 18 very popular npm packages being compromised, with around 2.7 ...

npx hardhat node npx hardhat run scripts/deploy.js --network eth_holesky npx hardhat run --network localhost scripts/deploy.js There was an error while loading ...

A decentralized quiz platform built on Algorand where users can test their blockchain knowledge, earn points, and connect their wallets for rewards.

Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...

Multiple npm packages have been compromised by a phishing attack in an attempt to spread crypto malware to billions of victims.

"debug" package attack failed; malicious update detected early, minimal impact. Developers urged to check their installations ...

Overview Coding communities in 2025 give developers worldwide a chance to practice, solve problems, and share ...