#npm-package

[ follow ]
#cybersecurity #malware #north-korea #software-development #supply-chain-attack #svg-icons #open-source
#cybersecurity
Information security
fromThe Hacker News
3 weeks ago

Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

Compromised npm packages can rapidly affect numerous systems, highlighting the need for enhanced security in software development processes.
Information security
fromThe Hacker News
3 weeks ago

Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

Compromised npm packages can rapidly affect numerous systems, highlighting the need for enhanced security in software development processes.
Information security
fromThe Hacker News
1 month ago

Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069

Google attributes the Axios npm package compromise to North Korean threat actor UNC1069, highlighting the risks of supply chain attacks.
Marketing tech
fromDeveloper Tech News
1 year ago

Masquerading payment npm package installs backdoor

A malicious npm package exploits payment transactions by embedding a reverse shell to hijack server control.
Threat actors are increasingly targeting payment systems to evade scrutiny by embedding malicious code.
more#cybersecurity
fromGitHub
1 month ago

GitHub - GLINCKER/thesvg: 3,800+ brand SVG icons for developers. Tree-shakeable, typed, open source. npm i thesvg

3,847 brand icons with multi-variant support (color, mono, light, dark, wordmark). Tree-shakeable npm package - import one icon, ship only that icon. TypeScript types for every icon module. Instant search with fuzzy matching and keyboard shortcut (Cmd+K / Ctrl+K). Filter by category - AI, Software, Framework, Language, Design, and more.
Web design
Web development
fromHackernoon
10 months ago

NextAEO Helps LLMs Find You-Because Google Isn't the Only Search Engine Anymore | HackerNoon

next-aeo enhances Next.js apps for AI Engine Optimization, improving visibility in AI-generated responses.
fromTheregister
1 year ago

Ripple NPM supply chain attack hunts for private keys

The sophisticated attack on the xrpl NPM package involved backdoors designed to steal users' private keys, placing cryptocurrency funds at significant risk.
Node JS
[ Load more ]