AT2k Design BBS Message Area
Casually read the BBS message area using an easy to use interface. Messages are categorized exactly like they are on the BBS. You may post new messages or reply to existing messages!

You are not logged in. Login here for full access privileges.

Previous Message | Next Message | Back to Slashdot  <--  <--- Return to Home Page
   Local Database  Slashdot   [92 / 250] RSS
 From   To   Subject   Date/Time 
Message   VRSS    All   Hackers Hijack npm Packages With 2 Billion Weekly Downloads in S   September 8, 2025
 2:40 PM  

Feed: Slashdot
Feed Link: https://slashdot.org/
---

Title: Hackers Hijack npm Packages With 2 Billion Weekly Downloads in Supply
Chain Attack

Link: https://it.slashdot.org/story/25/09/08/184323...

An anonymous reader shares a report: In what is being called the largest
supply chain attack in history, attackers have injected malware into NPM
packages with over 2.6 billion weekly downloads after compromising a
maintainer's account in a phishing attack. The package maintainer whose
accounts were hijacked in this supply-chain attack confirmed the incident
earlier today, stating that he was aware of the compromise and adding that
the phishing email came from support [at] npmjs [dot] help, a domain that
hosts a website impersonating the legitimate npmjs.com domain. In the emails,
the attackers threatened that the targeted maintainers' accounts would be
locked on September 10th, 2025, as a scare tactic to get them to click on the
link redirecting them to the phishing sites.

Read more of this story at Slashdot.

---
VRSS v2.1.180528
  Show ANSI Codes | Hide BBCodes | Show Color Codes | Hide Encoding | Hide HTML Tags | Show Routing
Previous Message | Next Message | Back to Slashdot  <--  <--- Return to Home Page

VADV-PHP
Execution Time: 0.0214 seconds

If you experience any problems with this website or need help, contact the webmaster.
VADV-PHP Copyright © 2002-2025 Steve Winn, Aspect Technologies. All Rights Reserved.
Virtual Advanced Copyright © 1995-1997 Roland De Graaf.
v2.1.250224