#npm

[ follow ]
#cybersecurity
Node JS
fromThe Hacker News
1 week ago

Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems

Three malicious npm packages disguised as a Telegram bot library have been found, containing SSH backdoors and data exfiltration functionalities.
fromInfoWorld
5 months ago
JavaScript

'Package confusion' attack against NPM used to trick developers into downloading malware

Blockchain communication offers both advantages and drawbacks for malware C2, hindering its widespread use.
fromThe Hacker News
3 weeks ago
Node JS

North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages

North Korean threat actors are using npm packages to spread BeaverTail malware and a new RAT loader, indicating advanced obfuscation techniques.
fromThe Hacker News
5 months ago
Information security

XML-RPC npm Library Turns Malicious, Steals Data, Deploys Crypto Miner

A software supply chain attack on npm packages has persisted for over a year, embedding malware that steals data and mines cryptocurrency.
fromArs Technica
9 months ago
JavaScript

Here's how carefully concealed backdoor in fake AWS files escaped mainstream notice

Sophisticated attackers embedded backdoors in fake AWS packages on NPM, highlighting the challenge in detecting such threats in open source repositories.
fromTechzine Global
5 months ago
JavaScript

Hackers abuse NPM code registries via Ethereum network

NPM registries are under attack from malicious packages leveraging typosquatting, targeting developers' systems.
287 malicious packages discovered affect prominent libraries.
Hackers utilize Ethereum smart contracts to obscure their true origins.
Node JS
fromThe Hacker News
1 week ago

Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems

Three malicious npm packages disguised as a Telegram bot library have been found, containing SSH backdoors and data exfiltration functionalities.
JavaScript
fromInfoWorld
5 months ago

'Package confusion' attack against NPM used to trick developers into downloading malware

Blockchain communication offers both advantages and drawbacks for malware C2, hindering its widespread use.
Node JS
fromThe Hacker News
3 weeks ago

North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages

North Korean threat actors are using npm packages to spread BeaverTail malware and a new RAT loader, indicating advanced obfuscation techniques.
Information security
fromThe Hacker News
5 months ago

XML-RPC npm Library Turns Malicious, Steals Data, Deploys Crypto Miner

A software supply chain attack on npm packages has persisted for over a year, embedding malware that steals data and mines cryptocurrency.
JavaScript
fromArs Technica
9 months ago

Here's how carefully concealed backdoor in fake AWS files escaped mainstream notice

Sophisticated attackers embedded backdoors in fake AWS packages on NPM, highlighting the challenge in detecting such threats in open source repositories.
JavaScript
fromTechzine Global
5 months ago

Hackers abuse NPM code registries via Ethereum network

NPM registries are under attack from malicious packages leveraging typosquatting, targeting developers' systems.
287 malicious packages discovered affect prominent libraries.
Hackers utilize Ethereum smart contracts to obscure their true origins.
more#cybersecurity
JavaScript
fromHackernoon
3 years ago

How to Automatically Publish Your NPM Package Using GitHub Actions | HackerNoon

Automating npm package publishing through CI/CD increases quality, ensures consistent versioning, and streamlines collaboration among contributors.
#javascript
JavaScript
fromTheregister
4 months ago

Solana JavaScript SDK backdoored to steal keys, funds

Malware was introduced in the @solana/web3.js library via a compromised npm account, affecting users who downloaded specific versions.
fromLogRocket Blog
4 months ago
JavaScript

npm vs. npx: What's the difference? - LogRocket Blog

npm is for managing Node.js packages, while npx is for executing packages without installation.
Both tools serve different but important roles in Node.js development.
fromCssfun
6 months ago
JavaScript

CSSFUN

CSSFUN streamlines CSS creation by using JavaScript objects to generate style strings automatically.
fromLogRocket Blog
9 months ago
JavaScript

Exploring JSR for JavaScript module management - LogRocket Blog

JavaScript is widely used for programming due to its versatility and ability to run on various platforms.
JavaScript
fromTheregister
4 months ago

Solana JavaScript SDK backdoored to steal keys, funds

Malware was introduced in the @solana/web3.js library via a compromised npm account, affecting users who downloaded specific versions.
fromLogRocket Blog
4 months ago
JavaScript

npm vs. npx: What's the difference? - LogRocket Blog

npm is for managing Node.js packages, while npx is for executing packages without installation.
Both tools serve different but important roles in Node.js development.
fromCssfun
6 months ago
JavaScript

CSSFUN

CSSFUN streamlines CSS creation by using JavaScript objects to generate style strings automatically.
fromLogRocket Blog
9 months ago
JavaScript

Exploring JSR for JavaScript module management - LogRocket Blog

JavaScript is widely used for programming due to its versatility and ability to run on various platforms.
more#javascript
#malware
JavaScript
fromTheregister
5 months ago

Typosquat campaign impersonates 287+ popular npm packages

A typosquatting campaign targets developers by distributing malicious npm packages disguised as popular libraries, complicating detection through new blockchain-based command control.
fromThe Hacker News
6 months ago
Information security

BeaverTail Malware Resurfaces in Malicious npm Packages Targeting Developers

Three npm packages with North Korean malware were discovered, continuing a trend of targeting developers through supply chain attacks.
JavaScript
fromTheregister
5 months ago

Typosquat campaign impersonates 287+ popular npm packages

A typosquatting campaign targets developers by distributing malicious npm packages disguised as popular libraries, complicating detection through new blockchain-based command control.
fromThe Hacker News
6 months ago
Information security

BeaverTail Malware Resurfaces in Malicious npm Packages Targeting Developers

Three npm packages with North Korean malware were discovered, continuing a trend of targeting developers through supply chain attacks.
more#malware
#package-management
fromGitHub
8 months ago
JavaScript

GitHub - stackblitz-labs/pkg.pr.new: Continuous (Preview) Releases for your libraries!

Continuous Releases streamline access to new features and fixes instantly without traditional release cycles.
fromMedium
7 months ago
JavaScript

Create and Publish Packages: A Modern Approach

Use the Bit Platform for simplified package management and publishing without complex setups.
fromHackernoon
4 years ago
JavaScript

Why You Don't Need PNPM And YARN | HackerNoon

Node.js developers often debate between npm, yarn, and pnpm for package management, with npm being the default choice due to its seamless integration and stability.
fromGitHub
8 months ago
JavaScript

GitHub - stackblitz-labs/pkg.pr.new: Continuous (Preview) Releases for your libraries!

Continuous Releases streamline access to new features and fixes instantly without traditional release cycles.
fromMedium
7 months ago
JavaScript

Create and Publish Packages: A Modern Approach

Use the Bit Platform for simplified package management and publishing without complex setups.
fromHackernoon
4 years ago
JavaScript

Why You Don't Need PNPM And YARN | HackerNoon

Node.js developers often debate between npm, yarn, and pnpm for package management, with npm being the default choice due to its seamless integration and stability.
more#package-management
fromGitHub
8 months ago
JavaScript

GitHub - oslabs-beta/flake-guard-alpha: Flaky test management.

FlakeGuard helps identify flaky tests for improved reliability in software testing.
JavaScript
fromSimplilearn.com
1 year ago

20 Javascript Tools Revolutionizing Web Development Today

JavaScript tools play a crucial role in web development, with Webpack for bundling, React for dynamic interfaces, and npm for dependency management and collaboration.
#web-component
fromRaymondcamden
10 months ago
JavaScript

PDF Embed Web Component Available Via NPM

PDF-Embed web component wraps Adobe's PDF Embed API for inline PDF display.
Developers can progressively enhance user experience with the PDF-Embed component.
The component allows for easy PDF embedding while providing potential customizations.
fromRaymondcamden
10 months ago
JavaScript

Table-Sorter Available Via NPM

The web component table-sorter is now available on npm for easy installation and use in projects.
fromRaymondcamden
10 months ago
JavaScript

PDF Embed Web Component Available Via NPM

PDF-Embed web component wraps Adobe's PDF Embed API for inline PDF display.
Developers can progressively enhance user experience with the PDF-Embed component.
The component allows for easy PDF embedding while providing potential customizations.
fromRaymondcamden
10 months ago
JavaScript

Table-Sorter Available Via NPM

The web component table-sorter is now available on npm for easy installation and use in projects.
more#web-component
[ Load more ]