News

PCMag

Score a Free Guided Sonatype Demo and Scale Up Your DevOps Pipelines

Take Sonatype Nexus Repository Cloud for a spin and see how it securely stores all your development tools and optimizes build ...

Over 300 npm packages compromised by self-replicating worm0 0

A new piece of malware is spreading through the popular tinycolor NPM library and more than 300 other packages, some of which ...
SecurityWeek

Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit

Shai-Hulud is the third major supply chain attack targeting the NPM ecosystem after the s1ngularity attack and the recent ...