#software-supply-chain-attack
#software-supply-chain-attack

[ follow ]

Notepad++ updates got hijacked for months and could have spied for China

Notepad++ hosting servers were hijacked June–December 2, 2025, allowing targeted users to receive malicious updates that likely enabled remote keyboard access by Chinese state-sponsored hackers.

#npm

fromZDNET

4 months ago

Information security

5 ways to spot software supply chain attacks and stop worms - before it's too late

Shai-Hulud is an ongoing, widespread npm software supply-chain worm attack compromising JavaScript packages and posing a major security crisis for JavaScript developers.

fromThe Hacker News

9 months ago

Node JS

Malicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto Addresses

Attackers upload malicious npm packages to target crypto wallet software, enabling them to manipulate transactions covertly.

fromZDNET

4 months ago

Information security

5 ways to spot software supply chain attacks and stop worms - before it's too late

fromThe Hacker News

9 months ago

Node JS

Malicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto Addresses

more#npm

[ Load more ]

#software-supply-chain-attack#software-supply-chain-attack

Notepad++ updates got hijacked for months and could have spied for China

5 ways to spot software supply chain attacks and stop worms - before it's too late

Malicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto Addresses

5 ways to spot software supply chain attacks and stop worms - before it's too late

Malicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto Addresses

#software-supply-chain-attack
#software-supply-chain-attack