JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

Billions (No, that's not a typo, Billions with a capital B) of files were potentially compromised. If you thought Node Package Manager (npm), the Billions of downloads were potentially compromised ...

Hackers hijacked popular web code to steal crypto. Users must check every wallet transaction to avoid losing funds.

The Bybit attack exploited predictable behaviors and habitual transaction approvals, proving that cybersecurity isn’t just about technology but also about human vigilance. The attack bypassed Bybit’s ...

Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after ...

An NPM supply chain attack has prompted Ledger Chief Technology Officer Charles Guillemet to urge crypto users to pause on-chain transactions.

On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...

On Feb. 21, 2025, attackers exploited vulnerabilities in Bybit’s cold wallet infrastructure, siphoning off $1.5 billion in Ethereum in the largest exchange hack to date. Investigations linked the ...

From what makes a good password to the strongest two-factor authentication methods, here are tips on how to avoid becoming a ...